ASA VPN preempt

• Post author:Admin
• Post published:September 18, 2024
• Post category:ASA/Cisco/VPN

ASA VPN preempt The Cisco ASA supports multi-peer VPN, useful when an organisation requires a primary and backup VPN tunnel. When the ASA detects the VPN to the primary peer…

Continue ReadingASA VPN preempt

ASA IKEv2 Multi-Peer VPN

• Post author:Admin
• Post published:September 17, 2024
• Post category:ASA/Cisco/VPN

ASA IKEv2 Multi-Peer VPN Overview High Availability VPN can be achieved on a Cisco ASA firewall using multi-peer crypto map, previously this feature was only supported on the ASA using…

Continue ReadingASA IKEv2 Multi-Peer VPN

ASA Dynamic VTI

• Post author:Admin
• Post published:September 16, 2024
• Post category:ASA/Cisco/VPN

Cisco Secure Firewall ASA version 9.19 introduces the Dynamic Virtual Tunnel Interfaces (DVTI) route-based VPN, which is an alternative to a policy-based VPN (crypto map). VTI is always up, unlike…

Continue ReadingASA Dynamic VTI

ASA tunnel internet over VPN

• Post author:Admin
• Post published:September 2, 2024
• Post category:ASA/Cisco/VPN

ASA tunnel internet over VPN In some circumstances organisations require routing internet traffic over an IPSec VPN back to the Data Centre and then access the internet from the Data…

Continue ReadingASA tunnel internet over VPN

Securing IOS-XE VPNs

• Post author:Admin
• Post published:August 29, 2024
• Post category:Cisco/IOS-XE/VPN

Securing IOS-XE VPNs This post provides some guidelines in securing an IPSec VPN on a Cisco IOS-XE router to reduce the attack surface when acting as a VPN gateway. Disable…

Continue ReadingSecuring IOS-XE VPNs

IOS-XE FlexVPN Remote Access VPN

• Post author:Admin
• Post published:August 15, 2024
• Post category:Cisco/IOS-XE/VPN

In this example FlexVPN Remote Access VPN users will authenticate to the Hub router using RSA certificates. Using the IKEv2 Name Mangler feature, the organisation-unit (OU) value will be extracted…

Continue ReadingIOS-XE FlexVPN Remote Access VPN