-
Follow Us!
-
Search the Blog
-
-
Recent Posts
- Cisco to Juniper BGP command conversions March 15, 2020
- Cisco ASA BGP configuration November 20, 2019
- Cisco ASA with PPPOE failover line October 28, 2019
- Let’s talk about AF-Groups, Session-Groups and Neighbor-Groups October 26, 2019
- Let’s talk about Peer-Groups, Session-Templates and Policy-Templates October 26, 2019
-
Archives
- March 2020
- November 2019
- October 2019
- September 2019
- September 2016
- August 2016
- January 2016
- June 2014
- April 2014
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
-
Tags
- Apache
- Array
- ASA
- BGP
- C
- Cisco
- Cisco 877
- Cisco ASA
- Compression
- deduplication
- EIGRP
- Eval
- failover
- FreeBSD
- FTP
- FTTC
- GRE
- Hash
- Infinity
- IPv6
- Jail
- Juniper
- K&R
- Mac
- Mod_Secure
- MySQL
- Nagios
- Objective-C
- Perl
- Quota
- References
- restore
- Schwartzian Transform
- Security
- Sendmail
- Snapshot
- Sorting
- Spamassassin
- SRX
- SSL
- uniq
- Virtusertable
- VPN
- Xcode4
- ZFS
-
General Links
Perl Links
-
Category Archives: Cisco
Cisco ASA BGP configuration
In this post we will examine the use of BGP in the Cisco ASA to allow failover between 2 ethernet style connections from the same ISP. There is no reason to doubt that this would not work with a PPPoE … Continue reading
Cisco ASA with PPPOE failover line
As we have documented previously, failover on the ASA is not a difficult configuration, just add a tracking object to the primary route and modify the metric of the secondary route. The snarly bit about getting a pope based failover … Continue reading
Posted in Cisco
Tagged backup line, Cisco ASA, distance, Failover line, pppoe
Comments Off on Cisco ASA with PPPOE failover line
Let’s talk about AF-Groups, Session-Groups and Neighbor-Groups
After the spin round the block with IOS-XE ‘scaled configuration’ features, this is the accompanying IOS-XR version. First thing first we need to create the ‘long-hand’ version that we used on XE but for XR. The config on XR changes … Continue reading
Posted in Cisco
Tagged AF-Group, BGP, Cisco IOS-XR, neighbor-group, Session Group
Comments Off on Let’s talk about AF-Groups, Session-Groups and Neighbor-Groups
Let’s talk about Peer-Groups, Session-Templates and Policy-Templates
We have a lot of BGP configuration over a number of devices. In the main these run IOS XE but not all. This post is a walk through of how to convert a ‘long-hand’ BGP config into first peer- groups, … Continue reading
Posted in Cisco
Tagged Cisco BGP, Peer-Group, Policy Template, Session Template.
Comments Off on Let’s talk about Peer-Groups, Session-Templates and Policy-Templates
Cisco ASA Connect to DSL via Draytek Modem
Some times we need to connect an ASA to a DSL/FTTC line directly vi a modem, either for a backup line (see previous posts) or for a primary internet connection. Lets walk through the process here: Stage 1- Set up … Continue reading
Posted in Cisco
Tagged ASA, Draytek modem. fttc, dsl, pope
Comments Off on Cisco ASA Connect to DSL via Draytek Modem
Cisco ASA Dual ISP setup
This post describes and tests some configurations to support multiple ISP or WAN connections on an ASA running FOS9. Im using an ASA 5506X for this demo and my software version does not use the bridge-groups out of the box … Continue reading
Cisco Anyconnect – Disconnect and Reconnect at login
We have all had that experience when the Cisco Anyconnect client immediately disconnects after you have logged on and then starts reconnecting again. Its not life threatening, just irritating. The issue appears to be caused by an MTU mismatch, but … Continue reading
Posted in Cisco
Tagged Anyconnect, Cisco, Disconnect D, MTU
Comments Off on Cisco Anyconnect – Disconnect and Reconnect at login
Cisco Dynamic L2L VPN setup
Todays challenge is to set up an L2L VPN tunnel between an Cisco ASA running IKEv1 and Cisco 927 with a dynamic IP address. The 927 is behind a NAT firewall so needs to be managed through the tunnel so … Continue reading
Cisco ASA Site to Site VPN with dynamic IP addresses
Today’s problem is a new customer office opening ahead of their scheduled MPLS installation. We need to connect them back into their VPN via their existing hosted Cisco ASA. The internet connection at the new office is at this point … Continue reading
Posted in Cisco
Tagged Cisco ASA, Dynamic VPN, IPSec, VPN
Comments Off on Cisco ASA Site to Site VPN with dynamic IP addresses
Basic WebVPN setup on the Cisco ASA 9.x
We have resisted the change for a long time, bit its time to finally move some of our customers over to the SSL VPN who were previously using the IPSec Remote Access VPN. Windows 10 does not support the IPSec client … Continue reading