Search results for query: *

Hi, I have 5 sites with similar versions of Cisco 1700 VoIP routers - most if not all have problems with dialing an external conferencing facility. When the user enters a pin (chairperson or user) each number pressed seems to be sent twice, for example 1234 is sent as 11223344. I have looked...

All - just to update. It turned out the ISP was routing the new block of addresses incorrectly. The addresses now NAT via the ASA without any additional configuration required. Thanks for your help all. Rich. CCNA Certified

Hi all, thanks for your replies. I have been looking at the arp table on the ASA - it seems to assign random MAC addresses to IP addresses within the same range as the outside interface... I have set the secondary block of addresses (all 6) with the same MAC address as the outside interfaces...

Hi, following on - would the MAC address I need to use be that of the ASA? For example each IP address I have (6 in total) all link back to the firewalls outside interface MAC? Regards, Rich Rich. CCNA Certified

Hi, thanks for your response! You have helped me out in the past. Appreciated as always :-) Now you have confirmed I need to enter some static ARP commands I can dig out the manual and find out what they are. All the best, Rich Rich. CCNA Certified

Hi, I would really appreciate some help in regards to some configuration for an ASA5520. I have a working ASA5520, the outside interface has an IP address range attached, of which statics, NAT, etc. works without issue. I have recently purchased a secondary block of IP addresses from the same...

Hi, It didn't permanently lock me out - I wasn't sure what the default was, but trying it a couple of hours later it worked again. It seems that changing it to 60 seconds, once the VPN is dis-connected, the timer starts then. Which, if it was a support query that required a laptop reboot...

PScottC - thanks for that command line!!! That command is what I was trying to find via Google, but to no avail! Thanks again! Rich. CCNA - preparing for SNPA exam :-)

Just come across a problem with my setup above. I find that if I disconnect the VPN and then try to re-connect that IP address is still in use - so the VPN phase 2 never completes. Is there a way of changing these default DHCP settings? Regards, Rich. CCNA - preparing for SNPA exam :-)

Thanks for your replies to my original post. I got it working using multiple IP Local Pools - luckily its only three laptops I need to keep with static IP addresses, so the dedicated pools for these three works ok, with seperate tunnel-groups for each. The fourth pool is for any other VPN...

Hi all, I was wondering if anyone knew if it was possible to always assign the same IP address to a PC that uses the VPN Dialer to connect. We use VNC for remote support so wanted to keep the addresses static. I thought that maybe you could link the MAC address to an IP address on the ASA...

I had awarded him with a lucky star! I didn't realise you could... Thanks for letting me know. Rich. Rich. CCNA - preparing for SNPA exam :-)

unclerico - THANKS SO SO MUCH!!! It works!!! Thanks to everyone else for posting suggestions as well! After doing the changes detailed in that post it fired into life! Below is the final working configuration, hopefully it will be of help to others trying to configure both site to site and...

Just a thought... does anybody reading this have a sample configuration of an ASA or Pix with version 8 of the software that is configured for both Site to Site and Remote Access VPN's? The ones I have found online relate to Version 7 of the software, also the Cisco guide I followed seems to...

Burstbees - good call, that Windoze firewall has caught me out before, but turning it off and reconnecting the VPN didn't help this time :-( The remote server I am testing connectivity too is a 2003 Server, running DNS, etc. so no firewall that end, the client is XP with the latest VPN V5...

Hi, right then I have debugged the crypto isakmp and crypto ipsec traffic, I get lines confirming phase 1 and 2 are complete - so far so good! Straight after Phase 2 completes I get the lots of the following: %PIX-7-609001: Built local-host inside:10.0.100.1 %PIX-7-609002: Teardown local-host...

Hi, I will check out the logs at work tomorrow to see if they have changed since the two additions above. Fingers crossed there is something obvious! Thabks for your help, will post my findings tomorrow. Rich Rich. CCNA - preparing for SNPA exam :-)

Hi, I have entered the crypto isakmp nat-transversal, but still get the same problem, in that it connects but can't get access to inside systems. The show access-list gives the following: access-list INSIDE_ACCESS_TO_HW; 4 elements access-list INSIDE_ACCESS_TO_HW line 1 extended permit ip...

Hi, thanks for the reply, I will try this when I am back in the office tomorrow morning. :-) Rich. CCNA - preparing for SNPA exam :-)

Hi, thanks for the response :-) I added the ACL you detailed above, doing a show access-list shows that the inside_access_out ACL first line denies any traffic designed for the VPN. I still get the same as before, from digging the ACL for the NAT0 is getting plenty of hits, so it looks like...