ASA 5508 failed.
Received a new ASA 5508.
via ASDM I've restored from my latest backup config.
Everything looks great with the exception of the VPN Certificates.

Shouldn't these have restored as well?
I was careful to check the "all ssl vpn config" on the restore options.

VPN users receive "No Certificate" when attempting to log in.

Hi We have a fail open policy set. Can someone advise on the quickest way to simply completely turn off scansafe cws using asdm. briefly   - I'm not after a bypass for 1 IP- just want it off briefly while continuing to allow web traffic to flow and then quickly turn back on - - since I have a fail open policy set is it simply a matter of just removing the tower IP address set  in  configuration - device management cloud web security - by having nothing here (removing) will this turn off CWS? - thanks Thanks

Hi All,

I've got myself into a bit of a problem, I've purchased a Cisco 867VAE (I'm already using these around the company) and unfortunately it came with image c860vae-ipbasek9-mz.152-4.M1.bin

This image doesnt support VPN isakmp I need the advanced security ios.

I downloaded c860vae-advsecurityk9-mz.154-3.M4.bin and flashed it to the FLASH booted up and now I get:

System Bootstrap, Version 15.1(4r)M2, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 2011 by cisco Systems, Inc.

C860VAE ipbase platform with 256 MB of main memory


Booting flash:c860vae-advsecurityk9-mz.154-3.M4.bin
boot: Launch entrypt: 0x80800000
Self decompressing the image : ################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################ [OK]

Wrong IOS image on IPBASE Router

I can goto ROMmon and boot back into the old image but how do properly upgrade this router to the new firmware I downloaded?

Another idential model router on another site is running:
System image file is …

Hello,

I'm trying to find a way to apply a mac filter on my WLC so that I can control who can or can not join my internal wifi.  

Preferrably a way that automatically pulls from my PDQ inventory or from my active directory so that we're not manually adding MACs would be great.  

I'm open to any other suggestions as well.  

Thank you!

I have sometimes a problem in my network that some Cisco Switches (2960x-48FPDL) are not pingable . But i can ping the attached Devices .
what can the cause be ?

There are a lot of articles out there on my issue, but I need to ask a few questions to feel comfortable with this upgrade.  I'm trying to upgrade the switch using the tar file, but I get the "not enough space on device" error during the file copy.  I've read that you can run the erase flash: command, but I'm a little iffy on that as I don't want to lose my vlan.dat file or my license files.  I have copied all three off to my TFTP server, but I'm still trigger shy.  What is the best way for me to clear space up on the switch without causing myself grief?  Likewise, where is the HTML directory hidden?  I can't see it when I run a directory listing of the flash?  I thought that deleting it would help clean up some space and the copy would put it back, but I can't find it.

Thanks in advance.

hi both on same asa firewall - remote access vpn already in place

can i also add site to site  vpn? thanks

I have a network that uses Cisco Aironet 1832i access points. I need to create an SSID for guest access. I understand VLAN's and tagging, but I'm not sure how to use this to isolate traffic. I can assign a per-SSID VLAN, but my ISP controls the gateway router- my concern is that traffic will go to and from the Internet, and despite being set to my internet-only VLAN (VLAN 10) that when it gets to that last-hop router, traffic will simply be routed back in to the network over the ports that are allowed. Am I overthinking this? We have a couple of network hops before we get to the Internet. Can someone provide a walkthrough or a link that explains how to configure this? We are using AP's with a WLC 3504, and I have control of the whole network up to the ISP gateway. I'd appreciate any ideas or help.
Thanks!

Having an issue with a meraki and an ASA site to site.  When i first built tunnel it showed up, both green on meraki and showing MM_active in the crypto sa on the ASA.  But Still can't talk to devices behind the asa.  And periodically when I check asa vpn status it shows red, but when i try to ping something behind the asa i get 100% loss but the tunnel will then show green.  Not sure if its an issue with meraki and using summarized subnets or something else.  Anyone have experience with this?

I have a cisco 2000 Access Point and I have the firmware.  What is the TFTP command once I telnet into the AP to load the file?

Does anyone know where can I find a trusted CISCO image repository of legacy images?

I'm looking for the following match:

Switch Ports Model              SW Version            SW Image
------ ----- -----              ----------            ----------
     1 12    WS-C3750G-12S      12.2(55)SE7           C3750-IPBASEK9-M


Thank you.

We have a user who is insisting on using his own personal computer equipment on our network. Despite repeated attempts to have this stopped he continues to use only his personal equipment over company issued devices. We have blocked the MAC address of his wired NIC on our switches and that worked but then he just started using wireless to connect. We blocked his wireless MAC address but he keeps getting USB wireless NICS. How can we block his username on the wireless controller? Or is there another option we have overlooked? Firing seems like a good option but unfortuantely one that isn't available.

Hi all,

I have a CISCO 3750x, with some vlans created, now i am connecting a Cisco SG-200 to it, how can i have it see the vlan's i created on the 3750 and the devices to communicate properly?

Sorry havent worked with the SG200 before, so kind of unfamiliar!