Static IP Alternative - Access Other Network As Trusted User

Sep 14, 2012

I am in need of a Static IP alternative (My ISP chooses not to offer the service). I do not need the Static IP to access my own devices. I need to access other networks as a "trusted" user.

View 10 Replies


Cisco VPN :: ACS 5.2 Create Static IP Address User For Remote Access

Sep 15, 2011

At first I use ACS 4.2 to create static ip address user for remote access VPN,It's easy,just configuration it at user set>Client IP Address Assignment>Assign static IP address,but when I use ACS 5.2 I can't find it.I try to add IPv4 address attribute to user by read "ACS 5.2 user guide" ,it says this: [code] I do this,but it's not work.When I use EasyVPN client to connect ASA 5520,user could through authentication but will not get that static IP address which I configuration on Internal,what should I do,if anyboby knows how to use ACS 5.2 to create a static ip address user for remote access VPN.

View 2 Replies View Related

Cisco AAA/Identity/Nac :: Use ACS 5.2 To Create Static IP Address User For Remote Access VPN

Sep 17, 2011

At first I use ACS 4.2 to create static ip address user for remote access VPN,It's easy,just configuration it at user set>Client IP Address Assignment>Assign static IP address,but when I use ACS 5.2 I dont't know how to do it.
I try to add IPv4 address attribute to user by read "ACS 5.2 user guide" ,it says this:
     Step 1Add a static IP attribute to internal user attribute dictionary:
     Step 2Select System Administration > Configuration > Dictionaries > Identity > Internal Users.
     Step 3Click Create.
     Step 4Add static IP attribute.
     Step 5Select Users and Identity Stores > Internal Identity Stores > Users.
     Step 6Click Create.
     Step 7Edit the static IP attribute of the user.
     I just do it,but it's not work.When I use EasyVPN client to connect ASA 5520,user could success to authentication but will not get the static IP address which I configure on Internal Users,so the tunnel set up failed.I try to Configure a IP pool on ASA for ACS users get IP address,and use EasyVPN client to connect ASA , everything is OK,user authenticate successed.but when I kill IP pool coufigurations and use the  "add a static IP address to user "configurations,EzVPN are failed. how to use ACS 5.2 to create a static ip address user for remote access VPN?

View 7 Replies View Related

Alternative Better Option Of Network Monitoring Service

Sep 4, 2012

As per me 24x7 network monitoring service is one of the best technique.Even we can protect large scale or enterprise level network with unwanted attacks or virus. Alternative better option of Network Monitoring Service

View 1 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.2 User Roles And Restricting User Access To Add Items?

Sep 22, 2011

We are running ACS 5.2 patch 6 and want to restrict access for users to be able to add devices to the system.For example, admin person in site A can only add devices into the site A group and cannot see/access other sites groups.

View 1 Replies View Related

Cisco VPN :: ASA5500 Static Address For Vpn User

Apr 10, 2011

I am trying to configure ASA to assign same static ip address to certain user(User1) every time when he connect to network via AnyConnect client. We have Windows AD and use LDAP AAA server for authentication of  VPN Remote Access users. I found in document "Cisco ASA 5500 Series Configuration Guide using the CLI, 8.2" in section "Configuring an External Server for Security Appliance User Authorization" explanation and configured ASA and User Properties in AD on exectly same way:First, I assigned static ip address in properties menu(dial in section) of User1 in Active Directory. Then I created ldap attribute map where I mapped msRADIUSFrameIPAddressattribute to IETF-Radius-Framed-IP-Address attribute. At the end I applied this ldap attribute map to AAA server group LDAP.
Although I set this up, whenever I connect using User1 credentials from AD I still get ip address from vpn pool instead static ip address that I configured. In output of debug ldap 255 command I found line "msRADIUSFramedIPAddress: value = -1062718956" but not any line that prove mapping above mentioned attributes.It seems like mapping is not working.All AnyConnect users get parameters from defined internal group policy on ASA,including addresses form pool,dns server etc. I want that User1 get static ip address and inherit all other parameters from group policy.

View 4 Replies View Related

Cisco :: Assign Static IP To IPSec VPN User In ASA 8.2?

Nov 29, 2011

I want to assign static IPs to users that login to IPSec VPN using Group Authentication in ASA 8.2.  The authentication through a Windows RADIUS server.  Right now, they are connecting just fine and pulling an IP from the pool I have configured in the IPSec policy. 
What would the best way to assign static IPs through VPN?

View 1 Replies View Related

Access Domain Network Shares Without User / Password Authentication?

Sep 21, 2011

I`ll get straight to the point. I have at work a domain of computers. on one of the computers (I have admin rights) I want to share a folder that can be accessed by other computers that are not in the domain. By default accessing that share requires a user/pass. My question is: can I configure something on the computer (running windows 2008 server) to the shared folder so that other computers that are not from the domain will gain access to without user/pass requirement (like a normal share)?

View 3 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.2 Static IP Assignment For Local User

Jun 7, 2011

how I can assign a static IP to a user in ACS 5.2. I am able to do it in ACS 4.2, but I don't see the same options under 5.2. General idea is that users authenticate from our VPN appliance via RADIUS, and upon authentication, their static IP is passed back to the VPN device. I can attach an arbitrary field to my local users by going to System Administration -> Configuration -> Dictionaries -> Identity -> Internal Users, but how do I get that IP address passed back when the user is authenticated via Radius?

View 1 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.3 Assign Static IP Address Depending On Authenticated User

Feb 12, 2012

Actually I have a lab with ACS 5.3 running with 802.1x, but when when the user is successfully authenticated, it's assigned and IP address from the DHCP server, is there a way to assign a static IP address depending of login username??

View 13 Replies View Related

Cisco Firewall :: Create Static PAT To Allow Host Address To Access Network Through ASA5510

Aug 23, 2012

The old syntax that I am much more familiar with has been deprecated.  On older IOS it would have been something like static (inside,outside) tcp 14033 1433 netmask  Plus an extended ACL to allow the traffic.I am trying to create a Static PAT to allow a host address to access our Network through an ASA.  I have external address that I want to hit the external interface on an obscure port (say 14033) and translate that traffic to an internal host address on  port 1433.

View 11 Replies View Related

Linksys Wired Router :: Static Route To Access TMG Internal Network Through RV042 Pptp Server?

Mar 20, 2012

Currently i am having a scenario where i have setup RV042 and which is connected to Microsoft Forefront 2010. PPTP works fine only on rv042 subnet but i am not able to access the "internal" network of TMG.RV042 ( ---> TMG [external] ( ---> TMG [internal] ( Is there any way through static route to access the TMG internal network through RV042 pptp server?

View 1 Replies View Related

Cisco AAA/Identity/Nac :: C3750 What Would Cause NAC To Untrusted And Trusted IP Address

Oct 4, 2011

We have c3750s running NAC 4.8.  Occassionally, a workstation will flap between the untrusted and trusted vlans.  We updated the NIC drivers on the workstation, we verified SNMP was functioning correctly on the switch, and we allowed the phones to act as the pass-through between the workstation and the switch.  What could cause the workstation IP Address to not redirect to a TRUSTED VLAN from the NAC_UNTRUST VLAN?  All updates have been downloaded to the workstation.

View 1 Replies View Related

Cisco Security :: ACE20-MOD Does Not Recognize 2048 Bit Certificate As Trusted

Dec 16, 2011

I have bought and installed a 2048bit certificate from Thawte on a ACE20-MOD-K9 module. The appliance can't use it and gives the following error: "This certificate cannot be verified up to a trusted certfication authority."I have contacted Thawte about this and they suggest to install an intermediate certificate from Thawte on the module, but I can't find such a certicicate for Cisco on their site. Also I'm not sure how to go about implementing such an intermediate certificate on the ACE.

View 1 Replies View Related

Cisco AAA/Identity/Nac :: ACS4.2 Windows Authentication To Other Trusted Domain?

Jun 6, 2011

I'm installing ACS4.2 in our lab domain and want to leverage the corporate domain for authentication.  The one way trust is in place, but there is a facet that I'm not clear on in regards to the installation requirement.
I'd like to install ACS on a lab domain member server, but I'm not sure that will work.  The installation docs seem to imply that a member server must be in the same domain as the authentication server, but its not very clear. if I want to use the one way trust to the Corporate Domain, am I required to install ACS on the domain controller of the Lab Domain?

View 3 Replies View Related

Cisco Firewall :: ASA5505 - With Two Trusted Interfaces / Traffic Not Going Out Of Inside2?

Nov 14, 2011

I'm going nuts with this ASA5505. This is a secondary firewall used only in emergencies when the primary Checkpoint failes.
The basics, it has two trusted interfaces, E0/1 and E0/2-6. E0/1, inside2 has 192.168.01/29 and inside is  I'd like any traffic to be allowed from inside and inside2 to outside and any traffic from the inside interfaces should be routed. No restrictions should apply between the two interfaces.
inside works just fine but no traffic is going out of inside2, not to outside or to inside.

View 8 Replies View Related

Cisco Security :: NAC 4.8 Agent Stays Open After Moving To Trusted VLAN

Feb 6, 2011

We have some Windows 7 clients that are running the 4.8 agent. NAC will process the user and move them to the trusted vlan. However, the agent stays open and appears to keep running/processing something. THe user can minimize the agent and work normally, and a reboot appears to fix the issue.

View 5 Replies View Related

Alternative Wireless Connection Manager?

Mar 13, 2012

i have met connection problems (mainly with xp)where a laptop always have problem connecting to a secured wifi connection that has higher encryption than wep (wpa - wpa2).In general after a few tests . I am almost sure that it is xp's Wireless Zero Configuration's problem.I am wondering if there is alternatives to WZC that does not require their own brand's device to run a 3rd party Wireless Connection Manager.I am not looking for a model specific software either ,

Examples are:

toshiba connect me
tp link connection utility
intel's mobile

View 11 Replies View Related

Cisco Firewall :: Alternative To PBR On ASA5510

Mar 30, 2011

We have an ASA5510 with a backup ISP connection protecting our corporate network.  I also have a mail server and I would like to route SMTP traffic over the backup network.  I realize that the ASA5510 does not support PBR, but I also know that I can use static NAT rules as a workaround to direct specific types of traffic over a particular interface (e.g. "static (outside,inside) tcp www www netmask" and "static (backup,inside) tcp smtp smtp netmask"). is it possible to use something similar to force a particular host to use a specific interface? I have tried to make this work on my own without success.  Is it even possible?

View 5 Replies View Related

Cisco :: WS-SVC-SSL-1-K9 / ACE And SSLM Support Subject Alternative Name (SAN)

Jun 5, 2011

I want to  migrate Exchange server to Exchange 2010, I would like to know if ACE and SSLM support Subject Alternative Name (SAN).
1.   Can the current CSM (WS-SVC-SSL-1-K9) support SSL certificates that have Subject Alternative Names? I.e. a certificate that has both of these names in it.
2)      Can the new ACE( ACE20-MOD-K9) support SSL certificates that have Subject Alternative Names? I.e. a certificate that has both of these names in it:

View 1 Replies View Related

Cisco Switching/Routing :: Getting Alternative To 891 Router?

May 3, 2013

I need 891 SEC router. I think this comes with advanced IP services.What I have is 1921, with IP Base.Can I upgrade 1921, so it will become alternative to 891 SEC ?

View 1 Replies View Related

Cisco :: Inexpensive Alternative For Small Mpls Sites?

Sep 10, 2012

Our company is starting to open a lot of small mpls sites across the nation. By small I mean less than 10 users, voip, 1 dc, that's it. Instead of getting the usual 2901+2960 combo, I'm interested in finding less expensive solutions. Maybe an L3 switch like a 3750? These are temporary sites so management is fine with looking into used, non smartnet covered gear?

View 7 Replies View Related

Cisco Firewall :: 5512 Policy Routing Alternative?

Apr 7, 2013

From what I can find the ASA does not support policy routing.
I have two VLANS that need to go to the same destination but different routes. Anyway to accomplish this on the ASA?

View 1 Replies View Related

Wifi Access Points With User Access Control?

Nov 27, 2012

We have a small office and already have a firewall in place that uses content filtering. I am looking for a low cost wireless access point that I can place behind my firewall that will allow me to control access by a username and password list, not just the passkey.

Does this exist without having to go to an Aruba or Ruckus type enterprise WIFI product?

View 1 Replies View Related

Cisco WAN :: Lacp Alternative For Port Channel On 12000 Series Router?

Jan 23, 2012

I found the following on the link bundling page for the 12000 series router:"In both EtherChannel and POS channel link bundles, the Link Aggregation Control Protocol (LACP) for signalling and the 802.3ad protocol for automatic negotiation of the channel are not supported. This means that in order for the channel between two routers to be active, you must disable signaling on switches (such as the Cisco 6500/7600 Series) in the channel, and configure the switches in ON mode."
So, my question is, if lacp isn't supported, is there another way to mimic its functionality on a 12000 series router?  I want to connect 2 routers together with a port channel that will pass through our layer 2 network, and I want to make sure that any failures in the path will shut down the affected link on both routers.

View 2 Replies View Related

Cisco Application :: CSS 11501 - Wildcard Certificate With Subject Alternative Names

Sep 6, 2012

I generated a wildcard certificate for my company type *. [URL] in a CSS 11501. For the site [URL] worked fine, for the site [URL] didn't worked. I read on the web that should generate a wildcard certificate with subject alternative names. Is it possible in CSS? how can I do it?

View 5 Replies View Related

Dell :: Alternative Card For Intel(R) Wi-Fi Link 5100 AGN For Studio 1555?

Jul 10, 2013

Mine studio 1555 with intel core 2 duo P8700 [URL] processor and intel wifi 5100 agn card stopped connecting to router since last week. After searching a lot I found out that the Intel has stopped supporting 5100 for windows 8. Is there any way possible to use the same adapter with compatibility drivers on windows 8?? I have searched a lot but couldn't find much. All the new intel cards like "Intel Centrino Wireless-N 2200", n6300 are of 22nm while my processor is of 45nm. So will the newer card work with my processor.

View 1 Replies View Related

Dell :: XPS 13 Ultra Book Alternative To Intel Centrino Advanced-N 6235 Wi-Fi Card?

Jul 2, 2013

what other cards are compatible with XPS 13 Ultrabook? Like so many people, I have been having a problem with my wifi when the computer is used a little far from the router, and thinking about buying a new wifi card for a replacement (which is silly, and I shouldn't have to do, given my computer is brand-new and cost more than £1000, I know... but I don't seem to have much choice). I've tried everything that has been suggested in the Dell forums, and elsewhere, including those on the Intel site. But nothing has improved my connection even a bit.I have Windows 8 (64-bit). And it currently has an 'Intel Centrino Advanced-N 6235' wifi card that came with it.

View 2 Replies View Related

Cisco Switching/Routing :: WS-X6148E-GE-45AT - Alternative Line Card For 650x-E?

Mar 26, 2012

Cisco announced EOL for ws-x6148A-GE-45AF line card and proposed WS-X6148E-GE-45AT. However this card seems not to be supported by the SUP2T-10G supervisor.  Which alternative card should I take for this EOL line card, or can I use the proposed line card (use extra daughter card DFC4)?
I'm looking for an alternative line card for the 650x-E chassis with Supervisor 2T iso 6148-GE-45AF

View 7 Replies View Related

Home Network :: Static IP Causing Network Crash?

Oct 17, 2012

We have a NETGEAR ProSafe™ 802.11g Wireless VPN Firewall FVG318 set up at work with a static IP so we can do a Voice Over IP from our sales office.Everything works fine until I plug in a computer that is connected to our digital printer, then the PC stays on the internet for a while, then crashes the connection.Once I plug in the PC to the network, the rest of the network has issues.

View 4 Replies View Related

Restrict Internet Access By User?

Jul 31, 2012

We're planning to ope a coffee house for teens at my church. We want the internet to be accessible to them but want to restrict what sites they can access so homework, games, etc. can be accessed but not the stuff rated for violent, rrisky behaviors.

View 1 Replies View Related

Cisco VPN :: ASA5520 / Cannot Access (RDP) VPN User

Nov 22, 2012

I need to access remote users system for troubleshouting and I cannot ping or access anything on their laptop when they are connected to VPN. For example, a user would get an IP of when logged into vpn but I cannot ping him from the CLI, or can I access his laptop via RDP. S [1/0] via 207.x.x.x, dmz What could be the issue and how can I fix this? Im on network S [1/0] via, Internal which has a route to C is directly connected, Internal The ASA is which i can ping from my desktop on Device info: This platform has an ASA 5520 VPN Plus license. Cisco Adaptive Security Appliance Software Version 7.2(5) Device Manager Version 5.2(5) Hardware:  ASA5520-K8, 512 MB RAM, CPU Pentium 4 Celeron 2000 MHz Internal ATA Compact Flash, 256MB BIOS Flash AT49LW080 @ 0xffe00000, 1024KB

View 1 Replies View Related

Static Ip To Access The Application

Jul 13, 2011

I have an application for my client's company. Their clients should post the request from outside thru internet. for that we have bought a Static IP. And now i have to configure that static ip to access the application from outside.what is the procedure for that?

View 1 Replies View Related

Copyrights 2005-15, All rights reserved