ASA VPN preempt

• Post author:Admin
• Post published:September 18, 2024
• Post category:ASA/Cisco/VPN

ASA VPN preempt The Cisco ASA supports multi-peer VPN, useful when an organisation requires a primary and backup VPN tunnel. When the ASA detects the VPN to the primary peer…

Continue ReadingASA VPN preempt

ASA IKEV2 Policy Based VPN

• Post author:Admin
• Post published:September 16, 2024
• Post category:Uncategorised

ASA IKEV2 Policy Based VPN A VPN will be setup between the 2 Cisco ASA firewalls (ASAv-1 and ASAv-2). The 2 routers (R1 and R2) will act as hosts in…

Continue ReadingASA IKEV2 Policy Based VPN

ASA Dynamic VTI

• Post author:Admin
• Post published:September 16, 2024
• Post category:ASA/Cisco/VPN

Cisco Secure Firewall ASA version 9.19 introduces the Dynamic Virtual Tunnel Interfaces (DVTI) route-based VPN, which is an alternative to a policy-based VPN (crypto map). VTI is always up, unlike…

Continue ReadingASA Dynamic VTI

ASA tunnel internet over VPN

• Post author:Admin
• Post published:September 2, 2024
• Post category:ASA/Cisco/VPN

ASA tunnel internet over VPN In some circumstances organisations require routing internet traffic over an IPSec VPN back to the Data Centre and then access the internet from the Data…

Continue ReadingASA tunnel internet over VPN

Securing IOS-XE VPNs

• Post author:Admin
• Post published:August 29, 2024
• Post category:Cisco/IOS-XE/VPN

Securing IOS-XE VPNs This post provides some guidelines in securing an IPSec VPN on a Cisco IOS-XE router to reduce the attack surface when acting as a VPN gateway. Disable…

Continue ReadingSecuring IOS-XE VPNs

IOS-XE FlexVPN Client Profile

• Post author:Admin
• Post published:August 12, 2024
• Post category:Cisco/IOS-XE/VPN

The FlexVPN client profile is an optional component used on the spoke (client) routers, which consists of settings used to connect to the FlexVPN server (hub) gateway, including the following:…

Continue ReadingIOS-XE FlexVPN Client Profile