Search results for query: *

The access-l 111 does exist. Also, putting the "ip nat inside" on Gig 0/1 would not work the way I have setup my lab. The issue is really related to SSH per se. Like mentioned in the original post, the IP of the router cannot even be pinged from outside with "ip nat outside" statement applied...

Guys - below is the config of my lab router. Very simple config but I cannot SSH/Telnet/Ping my router IP address from outside. However, when I remove "ip nat outside" statement from Interface Gig 0/0, I can SSH/Telnet/Ping my router IP address from outside. However, when I do this, I can no...

Guys - I am in the process of configuring a site-2-site VPN connection over DSL lines that we have installed at each branch office. The purpose of the VPN connection is to act as a backup when the main connection from the branch to the headquarters goes down. All branch offices and...

Guys - This is now resolved. The source interface had to be specified for TACACS using the following command: ip tacacs source-interface INT_NAME Surprisingly I didn't have to do this on the other router. Anyhow, it's working now....

Yeah I tried that also. Still doesn't work. I will probably have to call TAC. In my estimate, it's completely ignoring TACACS and using local authentication. LA is configued as a secondary authentication method.

Removed keys and re-added them. Problem still exists..

Maczen - here's the complete ACL. Hope it helps! 10 permit udp host 65.70.71.72 any eq snmp 20 permit udp host 65.70.71.74 any eq snmp 30 permit icmp any any 35 permit tcp host 65.70.71.78 eq 3389 host 172.16.111.248 40 deny ip any any

Guys - I have two 3845 routers that have the following AAA config: aaa new-model aaa authentication login default group tacacs+ local aaa authentication enable default group tacacs+ enable aaa accounting exec default start-stop group tacacs+ aaa accounting commands 15 default start-stop...

I modified the ACL to the following and now it works: permit tcp host 65.70.71.78 eq 3389 host 172.16.111.248 I guess the connection coming back from the server has a source port of 3389 and a random destionation port generated on the PC. Thanks for your help guys!!

Guys - I have a stack of switches (3750) that have multiple vlan's on them. One of the VLAN's has an access list applied to it in the "in" direction. The ACL has the following entries. The VLAN is numbered 101. 10 permit udp host 65.70.71.72 any eq snmp 20 permit udp host 65.70.71.74 any eq...

Hi Folks - I've configured command accounting (tacacs+) on an ASA 5520 but don't see any commands logged on the reports for tacacs+ accounting. Here's the configuration of AAA on the 5520: aaa accounting enable console AEM_Access aaa accounting ssh console AEM_Access aaa accounting...

Can you elaborate? Not sure how this could be related to NAT-T..

Hi Guys - I have a weird situation. I have an ASA 5520 that is our VPN end point for staff connecting remotely using the Cisco VPN client. ASA 5520 is connecting to one of the interfaces on the ASA 5510 (firewall). 5510 is connected to the inside network. Most staff members VPN in from home...

Hi Guys - We recently took over the Infrastructure (LAN & WAN) of a client company and therefore moved all the equipment to our data center. Since the move, users have complained that when they open files (specially Microsoft Office files) from network drives when connected via the VPN...

Hello All - We have about 8 different plant locations that are connected to the corp using a MPLS cloud. Each one of the plant locations have a backup DSL line in case the connection to the MPLS goes down. I will be configuring a site-2-site IPSEC VPN tunnel between each plant and the corp...

Wordpad worked great!!! Will try the other ones as well!!

Hello All - I copied the config files from a couple of Cisco 4500 switches. I copied the file to my PC running a TFTP server. However, when I view the copied files, they are not in readable format. How can I make them readable? I use putty, and I can copy section by section when viewing the...

Hello folks - I am going to be configuring a 2811 router which will have 2 PRI's on it. Both those PRI's will be used for dial-up access from remote sites. We will have one 800 number for dial up purposes. May have a second 866 number, but not sure at the moment. We are getting the PRI lines...

Hello everyone - I have 2 different stacks of 3750 switches. One stack has 3 switches, the other has 2 switches. A regular stacking cable is stacking these switches. Can I take these two different stacks and combine them into a single cluster? If yes, what would be the benefit of doing so...

Hi everyone - I have a question on how to implement load balancing between cisco routers. Here's the situation. We have a stack of 3750 switches connected to a 3845 router with dual T3's. This router will be connected to a MPLS cloud. How can I implement load balancing between dual T3's in...