Cisco VPN :: NSA2400 - Unable To Connect To VPN Using Secondary ISP Line?
Sep 20, 2012
We are using Cisco VPN Client 5.0.07.0290 to connect to our servers. We have Sonicwall NSA2400 FW and we have 2 ISPs. We have configured the Load balancing on Firewall in 'Spill-Over' mode.
So whenever the 1st ISP Line is on full load it will automatically moves the users on 2nd line.The problem we are facing here is users who are getting IP from 1st ISP Line they are smoothly able to connect to Cisco VPN client but the users who are getting IP from 2nd ISP Line they are not able to connect to Cisco VPN Client. This is really annoying as everyone should be able to connect.
View 8 Replies
ADVERTISEMENT
Dec 6, 2011
I have installed 2 ACS 5.2 appliances, the two appear as Primary. When I try to register one of them with the other one using "System Administrator -> Local Operation -> Deployment Operations" I get the following message:
This System Failure occurred: Unable to authenticate with node.. Your changes have not been saved.Click OK to return to the list page.
I have tried with both "ACSAdmin" and "admin" users with their respective passwords.
View 3 Replies
View Related
Jun 11, 2012
Today I ran a failover test between our primary and secondary ACS systems (ran 'acs stop' on the primary) and in the process decided to promote the secondary while I had the primary down. All was fine until I brought the primary back up and tried to re-register the secondary to it. I get the following error message: I went into System Administration >Operations >Distributed System Management on each and it showed the other device as deregestered, tried to promote from there but it failed too, so I deleted them and tried to register the secondary again. After that didn't work I tried rebooting both but that didn't work either. I know the user/pass I'm using is good and I've tried using both the IP address and the hostname.
ACS/admin# sh app version acs
Cisco ACS VERSION INFORMATION-----------------------------Version : 5.3.0.40.5Internal Build ID : B.839Patches :5-3-0-40-5
View 3 Replies
View Related
Jun 5, 2012
I have an ASA 5510 running v8.4(3)9 and have setup a remote user VPN using the Cisco VPN client v5.0.07.0410 which is working appart from the fact that I cannot access resources on a secondary subnet.The setup is as follows:
-ASA inside interface on 192.168.10.240
-VPN clients on 192.168.254.x
I can access reources on the 192.168.10 subnet but not any other subnets internally, I need to specifically allow access to the 192.168.20 subnet,[code]
View 3 Replies
View Related
Nov 15, 2012
We have a WLC 4410 management IP Address configured as 10.40.124.59.and configured VLAN1 on WLC with IP address 10.40.126.250. we are unable to ping the VLAN1 ip address from the switch. even unable to ping 10.40.126.252 (Gateway). Is there any limitation that we can not configured ip address from secondary scope...Switch vlan 1 configuration is ......interface GigabitEthernet0/0.1description Business VLANencapsulation dot1Q 1 nativeip address 100.93.50.2 255.255.0.0 secondaryip address 10.40.126.252 255.255.255.0 secondaryip address 10.40.124.61 255.255.255.192 secondaryip address100.43.94.252 255.255.255.0.
View 3 Replies
View Related
Jan 7, 2013
We an 887m router in our office with an unmanaged switch. We have two networks, 192.168.0.x and 192.168.11.x connected to router on the same interface (192.168.11.253 is a secondary ip) but I can seem to be able to route packets from one network to the other. Internet traffic is fine from both networks. I can't see what I'm doing wrong here. I can ping the 192.168.11.253 (router) from the 192.168.0 network but nothing beyond that.
I tried this at home with no other config and its the same. Is this by design?
View 4 Replies
View Related
Nov 16, 2012
I cannot eliminate the lines vty in my Cisco 7609 router when I write show users, I obtain the following thing: [code]
View 2 Replies
View Related
Mar 26, 2013
As part of our PCI compliance, we were required to add a line to all of our ACLs in our ASA 5520 running version 8.2(3). Though there is an implicit deny all, we had to add a line to deny from any source to any destination.We had no problems in adding the additional deny all statements except for our NAT access-list. This NAT access list is used for our internet connection.Currently, the NAT ACL has 4 entries to permit from a specified source to destination any. This ACL is then called on our NAT statement.nat (inside) 1 access-list NAT,Also, note that NAT control is in place and we also have NAT zero statements for our VPN connections.So to fulfill our requirements, we just had to add another line to our ACL entries. But we encountered an issue with our NAT acl.
View 10 Replies
View Related
Oct 10, 2012
Cisco 2500 series access servers show line usage with the "show line" command:
View 2 Replies
View Related
Apr 22, 2013
We have approximately 20 users on our LAN, i need to connect a Diginet line that a client has installed that we have a "dedicated" connection to them, we have got an ADSL router that is connected to the lan for internet connectivity, and we need to access the client specificallly via the Diginet line.
View 1 Replies
View Related
Sep 21, 2012
how can i fetch (feed) the internet from Network2 to Network1? so that the wired pc can access ADSL#2
Network1 (home): wireless Router connected to ADSL#1, with 2 wired pcs
Network2 (neighbor): wireless Router connected to ADSL#2 (this network is only accessible by wireless in one room, i can't take a cable from this router)
View 2 Replies
View Related
Mar 20, 2011
I want to put a laptop in the barn, with a web cam. I have a phone line (with spare wires) running to the barn and I want to connect my house laptop to the one in the barn.How do I do this?
View 1 Replies
View Related
Jan 26, 2012
I have a router that i want to connect to my direct tv box. The router only has Ethernet cables on the back and no room for a phone line. how can I connect the phone line to the router?
View 1 Replies
View Related
Feb 19, 2011
Our church has 1 phone line, we run BTBusiness Broadband at one of the building where we have a couple of charities based. We have the phone line connected to an extension at the other end (where the Church is) >80m away. Any way of running a second concurrent router on the extension so I can set up an office with a VOIP number, pC's printers etc there too? We use Devolo ethernet over mains and wireless for the main building, but the church itself is on a completely seperate mains power supply so I can't use that. I could run 100m Cat 5 and locate a switch on that, but any way of achieving something similar over the phone cable which is already in place.
View 2 Replies
View Related
Dec 4, 2012
Two of us were using power line adapters to connect to the router. We had no problems whatsoever. Then my other friend got a power line adapter and starte connecting that way too. Then pretty much both mine and his stopped working. Yet my other friend can still use his no problem.I ran and ipconfig /all and I'm noticing that its not giving me a default gateway address. I tried inputting it manually and still nothing. My windows 7 pc keeps saying it can't identify the network.I also have this problem when I try connecting my Xbox and he has the same issues with his ps3.Yet we can both connect wirelessly with no problems.The router in question is a Netgear N300+.
View 14 Replies
View Related
Mar 29, 2011
how to connect 2 personal computers with telephone line
View 1 Replies
View Related
Feb 1, 2013
I have got a TP link wireless router connected by TP link power line ethernet adapters connected to my sky box, one to Samsung Smart TV, which both work fine the third I have connected to my computer. This shows up as as a local area connection but with no internet access. I have similar problems to other people with internet access dropping out after installing Windows * and had hoped an ethernet connection would be more stable. Any thoughts on why I can't connect to the internet via my powerline adapter.
View 5 Replies
View Related
Aug 11, 2011
I configured dot1x on my swicth 4500 series, Here is the interface configration:
interface FastEthernet3/2
description Test dot1x
switchport mode access
load-interval 30
authentication event fail action authorize vlan 800
authentication host-mode multi-host
authentication port-control auto
[code]....
When I remove the port-control configuration on the interface, the status change to UP/UP.
View 1 Replies
View Related
Jan 25, 2013
I just bought an ea6500 to replace my old Billion router and up to now all I've had to do is plug my phone line directly into the "phone line in" port on the back of the billion router. But I see there is no "phone line in" port on the ea6500, I don't use a modem and have used the billion router by itself for the past 6 years, is there a way to connect my phone line directly to the ea6500 somehow? My research so far indicates you can't do it via an 'Ethernet / phone line adaptor' as they are incompatable anyway.
The install guide seems to expect a Modem is being used but in my case it hasn't been and I would think a router should perform the basic functions of a modem anyway ?
My concern is that if I really need to purchase a modem then won't this potentially 'throttle' the capabilities of the ea6500 which is the reason I've bought it in the first place ?
If I do need to purchase a modem to get my ea6500 working then what specs should I be looking for ??
View 4 Replies
View Related
Mar 27, 2012
The reason is i want to know the difference between the leased line and the DSL line. The whole thing behind the confusion is, We plan to have a high speed internet connection in our office. We will don't have a branch office or some thing like that. I preffered to have high speed internet in our office. I found in some website that Lease line will have high speed connectivity(Upto 10Gbps). Can i use the lease line or DSL is enough for our office. Our office contains of 82 user who will use internet.
View 2 Replies
View Related
Feb 6, 2011
I have two buildings. In first building I have network with internet. In other building network without internet. I need to connect buildings to the same network using two WAG320N modems by the phone line cable. Is it possible and what configuration I need to set up?
View 2 Replies
View Related
Apr 30, 2011
Can I connect 2 routers to one phone line so that I can receive a wireless internet connection throughout my house?
View 1 Replies
View Related
Jun 8, 2011
Few days ago I started to get the following error message while trying to connect to the internet using Chrome and IE:"Unable to connect to the proxy server..."I don't have a proxy server configured - nothing is checked in the LAN settings page.In Firefox I don't have that problem - it seems it gets the proxy configuration from elsewhere.
View 3 Replies
View Related
Mar 1, 2013
In my device I am able to browse through & connect to my HOME wifi network ; But after connecting it says 'No Internet Access'.I tried connecting with my SONY Bluray , iphone , ipad , laptops -- everywhere same story.I am able to plug in the ethernet cable directly from modem & able to connect to network.I am not able to open the http://192.168.0.1 -- ( When I am plugged in the modem directly)
Following are my router details
FCCID - KA2DIR601A1
IC : 4216A-IR601
H/W Ver:A1
F.W Ver:1.00 NA
View 12 Replies
View Related
Mar 2, 2011
In ACS 5.1 how do I promote the secondary server to local mode if I have lost the primary server, in this scenario is it only accessible by the CLI and would you have to manually promote it so as to enable further configuration elements via the GUI? I would have thought that if the primary failed some sort of keep alive from the primary to the secondary would be lost thus making the secondary force it's own promotion but this does not seem to be the case???
View 2 Replies
View Related
Aug 26, 2012
i have planned a deployment with one acs in Europe working as primary, one acs in europe as secondary and one acs in USA as secondary also.
I can add one acs in europe to the deployment as secondary. When I try to add the acs in USA to the deployment - Nothing really works.
The status shown in the primary is offline (red) and status pending. It stays like this for hours. When I log in to the gui directly on the acs in USA, it still has status primary.
The two acs are transparently connected. There is WAN optimization (cisco waas) in between the two datacentres..
View 1 Replies
View Related
Apr 24, 2011
I have two ACS 5.2 working in redundancy Primary and Secondary my question in when my primary ACS goes down i can´t see the log in the secondary ACS. I read in the documentación that only one ACS can be configurated for working like logg collector server. Now I configurated my secondary ACS like logg collector server now when my Primary ACS goes down i can see the logg. Finally when my Secondary ACS goes down i can modified the ACS Primary Configution by show me the logg.. Is possible to do this automaticaly for show me the event logg ? when the ACS that is configurate like logg collector server goes down pass the event other ACS automatically..
View 3 Replies
View Related
Sep 12, 2011
I have 1 2821 router with several IP addresses from a single provider. The IP addresses are not contiguous.I would like to NAT different internal subnets to different external IP's. i.e. map 10.1.1.0 to x.x.220.68 and 10.1.2.0 to x.x.220.70 and 10.1.3.0 to x.x.105.184.
I currently have ip nat inside source route-map SDM_RMAP_1 interface GigabitEthernet0/1 overload that translates everything to x.x.105.184.What would be the best way to setup the NAT statements to be able to divide up the subnets?
View 3 Replies
View Related
Mar 16, 2012
On a cisco 2821 running 15.1(3)T1 From this cisco DOC, common use of secondary IP addresses on an interface are
•There might not be enough host addresses for a particular network segment. For example, suppose your subnetting allows up to 254 hosts per logical subnet, but on one physical subnet you must have 300 host addresses. Using secondary IP addresses on the routers or access servers allows you to have two logical subnets using one physical subnet.
•Many older networks were built using Level 2 bridges, and were not subnetted. The judicious use of secondary addresses can aid in the transition to a subnetted, router-based network. Routers on an older, bridged segment can easily be made aware that many subnets are on that segment.
•Two subnets of a single network might otherwise be separated by another network. You can create a single network from subnets that are physically separated by another network by using a secondary address. In these instances, the first network is extended, or layered on top of the second network. Note that a subnet cannot appear on more than one active interface of the router at a time.
On the WAN interface I've added two Secondary Public IP's (from the same subnet) to use for NAT to internal hosts. Is this a common scenario or is there a more typical way to acheive this. This assumes, I do not want to put a Public IP on an interface on the internal server.
interface GigabitEthernet0/1
description WAN$ETH-WAN$
ip address x.x.x.1 255.255.255.240
ip address x.x.x.2 255.255.255.240 secondary
ip address x.x.x.3 255.255.255.240 secondary
[code]....
View 2 Replies
View Related
Jun 22, 2011
How can you figure out your primary and secondary DNS? I have a linksys router, and i'm trying to figure out what my primary and secondary DNS are so i can hook up my PS3 online.
View 1 Replies
View Related
Feb 7, 2013
Just want to know if there is a way to configure secondary IP address on the outside/public interface of ASA/PIX.One of our clients have used most of their IP on the subnet given by their ISP. They use those IP's for staticallymapping to Servers inside their local LAN. Thus, they requested another block/subnet from their ISP. They will also use this for static mapping/port forwarding to other servers in their network. The current UTM they are using is allowing this but they would like to use ASA/PIX as their main Firewall. Is this even possible or is there a workaround for this kind of scenario?
View 5 Replies
View Related
Oct 3, 2011
Is it possible to setup a Backup GRE Tunnel using a Seconadary IP Address on the WAN interface. The router is a Cisco 871.
View 33 Replies
View Related
Feb 28, 2013
We are using ACS 5.3 with two servers in a distributed solution.All logs are collected on primary server so when this server fails all logs are lost.How can I enable log on secondary server also?
View 2 Replies
View Related
