Search results for query: *

Hi, I have 5 sites with similar versions of Cisco 1700 VoIP routers - most if not all have problems with dialing an external conferencing facility. When the user enters a pin (chairperson or user) each number pressed seems to be sent twice, for example 1234 is sent as 11223344. I have looked...

All - just to update. It turned out the ISP was routing the new block of addresses incorrectly. The addresses now NAT via the ASA without any additional configuration required. Thanks for your help all. Rich. CCNA Certified

Hi all, thanks for your replies. I have been looking at the arp table on the ASA - it seems to assign random MAC addresses to IP addresses within the same range as the outside interface... I have set the secondary block of addresses (all 6) with the same MAC address as the outside interfaces...

Hi, following on - would the MAC address I need to use be that of the ASA? For example each IP address I have (6 in total) all link back to the firewalls outside interface MAC? Regards, Rich Rich. CCNA Certified

Hi, thanks for your response! You have helped me out in the past. Appreciated as always :-) Now you have confirmed I need to enter some static ARP commands I can dig out the manual and find out what they are. All the best, Rich Rich. CCNA Certified

Hi, I would really appreciate some help in regards to some configuration for an ASA5520. I have a working ASA5520, the outside interface has an IP address range attached, of which statics, NAT, etc. works without issue. I have recently purchased a secondary block of IP addresses from the same...

Hi, It didn't permanently lock me out - I wasn't sure what the default was, but trying it a couple of hours later it worked again. It seems that changing it to 60 seconds, once the VPN is dis-connected, the timer starts then. Which, if it was a support query that required a laptop reboot...

PScottC - thanks for that command line!!! That command is what I was trying to find via Google, but to no avail! Thanks again! Rich. CCNA - preparing for SNPA exam :-)

Just come across a problem with my setup above. I find that if I disconnect the VPN and then try to re-connect that IP address is still in use - so the VPN phase 2 never completes. Is there a way of changing these default DHCP settings? Regards, Rich. CCNA - preparing for SNPA exam :-)

...future, ideally I want the Cisco TACACS+ one so I can apply ACL's to each user. Due to the recession and budget cuts this is currently a pipe dream! :-( Which leads me to the question, are there any good *free* AAA servers I can get hold of??? Regards, Rich. CCNA - preparing for SNPA exam :-)

Hi all, I was wondering if anyone knew if it was possible to always assign the same IP address to a PC that uses the VPN Dialer to connect. We use VNC for remote support so wanted to keep the addresses static. I thought that maybe you could link the MAC address to an IP address on the ASA...

I had awarded him with a lucky star! I didn't realise you could... Thanks for letting me know. Rich. Rich. CCNA - preparing for SNPA exam :-)

...configuration, hopefully it will be of help to others trying to configure both site to site and remote access VPNs on PIX / ASA's running IOS V8 ************************************************************ PIX DEMO CONFIG!!!!! PIX Version 8.0(3) ! hostname pixfirewall enable password...

Just a thought... does anybody reading this have a sample configuration of an ASA or Pix with version 8 of the software that is configured for both Site to Site and Remote Access VPN's? The ones I have found online relate to Version 7 of the software, also the Cisco guide I followed seems to...

Burstbees - good call, that Windoze firewall has caught me out before, but turning it off and reconnecting the VPN didn't help this time :-( The remote server I am testing connectivity too is a 2003 Server, running DNS, etc. so no firewall that end, the client is XP with the latest VPN V5...

Hi, right then I have debugged the crypto isakmp and crypto ipsec traffic, I get lines confirming phase 1 and 2 are complete - so far so good! Straight after Phase 2 completes I get the lots of the following: %PIX-7-609001: Built local-host inside:10.0.100.1 %PIX-7-609002: Teardown local-host...

Hi, I will check out the logs at work tomorrow to see if they have changed since the two additions above. Fingers crossed there is something obvious! Thabks for your help, will post my findings tomorrow. Rich Rich. CCNA - preparing for SNPA exam :-)

...4 elements access-list INSIDE_ACCESS_TO_HW line 1 extended permit ip object-group INSIDE_LAN object-group SITE_TO_SITE_VPNS 0xd99d182a ******************************************************** access-list INSIDE_ACCESS_TO_HW line 1 extended permit ip 10.0.100.0 255.255.254.0 10.0.78.0...

Hi, thanks for the reply, I will try this when I am back in the office tomorrow morning. :-) Rich. CCNA - preparing for SNPA exam :-)

Hi, thanks for the response :-) I added the ACL you detailed above, doing a show access-list shows that the inside_access_out ACL first line denies any traffic designed for the VPN. I still get the same as before, from digging the ACL for the NAT0 is getting plenty of hits, so it looks like...