HSRP is commonly used as a router failover mechanism, where one router in the group is active and all other group members are in standby. A standby router will take over as the active router when connectivity to the active…
Firstly, Nat 0 and static can be used to achieve the same result of bypassing NAT, at least logically 🙂 However both are fundamentally different. Take a look at the following example: nat (inside) 0 192.168.1.1 255.255.255.255 and static (inside,dmz)…
Today, I got a chance to setup some bandwidth limiting on our Cisco ASA Firewall. The goal was to choke the speed of traffic going to our backup server to 250Mb/s. As our backup traffic goes through a firewall here’s…
A site to site IPsec VPN consists of two phases; Phase 1 – IKE exchange and Phase2 – Establishing the ipsec tunnels. It is important to figure out which part of the negotiation the VPN is failing at. However, before…
How often do you get a chance to create new IPsec VPN tunnels? Well today, I got a chance to create 3 customer site to site VPNs at once! Speaking of VPN tunnels, how many know the commands for creating…