Nice articles on tecmint and rootusers.

Very good explained here.

– make sure you have defined user on ASA with privilege 15
– make sure you have ssh scopy enable configured
– on your linux host enter pscp -pw <password> <filename> <username>@<ASA IP>:<location/filename>

something like: pscp -pw THISisp4ssw0rdf anyconnectfile.pkg adminusername@8.8.8.8:disk0:/anyconnectfile.pkg

if you want to use scp with password prompt use: scp anyconnectfile.pkg adminusername@8.8.8.8:disk0:/anyconnectfile.pkg

PSCP client available here.

as seen on xmodx.

netstat -an | find /i “listening” – grep with string

netstat -ao | find /i “listening” – lists owning process ID associated with connection

if “find /i” doesn’t work try “findstr”

great reminder -> click to enlarge

Simple configuration in GNS3 won’t work. All I get from debug is:

went from nsf_not_active to nsf_not_active

The solution is quite simple: under BGP process and neighbor statement add “disable-connected-check“

Recently I had to troubleshoot a problem with Cisco TAC. Engineer asked me to draw my scheme in this very cool service. Check it out @ asciiflow

How to see if your router is under heavy VPN traffic? Configure netflow export and enter following command:

router# sh ip cache flow | i _32_.+

Recently I had a situation where customer asked me to configure remote access VPN on his old Cisco 871. Configuration was quite simple but I had problem with connecting iPhone to his network.

The solution is quite simple: apparently Apple doesn’t like 3des so I had to configure transformset like this:

crypto ipsec transform-set myset esp-aes 256 esp-sha-hmac