- Cisco IPS to Cisco FirePOWER NGIPS
- Cisco ASA 5500 to Cisco ASA 5500x
Nice guide here.
– make sure you have defined user on ASA with privilege 15
– on your linux host enter pscp -pw <password> <filename> <username>@<ASA IP>:<location/filename>
something like: pscp -pw THISisp4ssw0rdf anyconnectfile.pkg email@example.com:disk0:/anyconnectfile.pkg
as seen on xmodx.
netstat -an | find /i “listening” – grep with string
netstat -ao | find /i “listening” – lists owning process ID associated with connection
if “find /i” doesn’t work try “findstr”
Simple configuration in GNS3 won’t work. All I get from debug is:
went from nsf_not_active to nsf_not_active
The solution is quite simple: under BGP process and neighbor statement add “disable-connected-check“
Recently I had to troubleshoot a problem with Cisco TAC. Engineer asked me to draw my scheme in this very cool service. Check it out @ asciiflow
How to see if your router is under heavy VPN traffic? Configure netflow export and enter following command:
router# sh ip cache flow | i _32_.+
Recently I had a situation where customer asked me to configure remote access VPN on his old Cisco 871. Configuration was quite simple but I had problem with connecting iPhone to his network.
The solution is quite simple: apparently Apple doesn’t like 3des so I had to configure transformset like this:
crypto ipsec transform-set myset esp-aes 256 esp-sha-hmac