Archive for the ‘ Cisco ’ Category
In order to configure a client machine to detect when the vlan changes you must define the appropriate registry keys on the client. The following required DWORD registry keys are all located in the same HKEY_LOCAL_MACHINE\Software\Cisco\Clean Access Agent\ registry location. RetryDetection 5 PingArp 0 VlanDetectInterval 5 You’ll need to make these changes is you’re in [ READ MORE ]
So you have a small remote office and want to permit SSH to the outside interface of the 871s. SDM does not seem to permit this. What you must is within the Zone Based Policy Firewall (at the CLI) to permit SSH is allow SSH from the outside zone to the self zone[ READ MORE ]
To show active VPN then use Phase1: sh crypto isakmp sa Phase2: sh crypto ipsec sa To reset a VPN then use clear crypto isakmp sa or clear crypto isakmp sa 1.1.1.1 where 1.1.1.1 is the remote peer[ READ MORE ]
I’ve recently used CTA 2.1 with the 802.1x supplement, first the machine would authenticate upon boot up and then when the user logged in they would be re-authenticated and any particular user settings would be applied. This was all evident in the ACS logs. However it seems when using native 802.1x on an XP machine [ READ MORE ]
Unlike the ASA there is not an automatic feature to keep the configuration in sync across the 2 IPS SSMs. Some options: You can use the copy command to copy the configuration from one sensor to an ftp/scp server. Then use the copy command on the second sensor to copy the configuration onto the second [ READ MORE ]