Came across this issue which got me stumbled at first. I had a VTI tunnel to Azure with static route pointing to the next hop. FTD# sh run route | i 10.16.0.0 route Tunnel10-Azure 10.16.0.0 255.255.0.0 10.2.80.2 1 Tunnel interface was up. FTD# sh int ip br Tunnel10 10.2.80.1 YES …
Blog Posts
I saw this issue with redundant internet up-links. Check routing for VPN gateway. I had encrypted subnet routing through secondary Internet connection but secondary VPN gateway IP was still routing through default primary Internet gateway. Once all the routing matched, VPN tunnel came up. …
After deploying Remote Access VPN settings I’ve updated the default domain field under the Group Policy (GP) but got a deployment error. Lina messages ErrorCode: CFG-IN-PROGRESS Severity: error Description: com.cisco.ngfw.messages.DescriptionType@8b7c834 FMC >> clear configuration session OBJECT I was able to update the domain with some random name but not the …
To join 2800/3800 ME to 9800-CL WLC you will need console access. By default AP will not join. On the console go through ME setup, assign AP username and password and reboot. Once rebooted use console to login back into AP console mode. (Cisco Controller) > apciscoshell Log in to …
Once you complete your FTD remote site deployment there may come up a need to monitor Syslog or SNMP messages from FTD or if you want to turn on AnyConnect RA VPN with AAA authentication. With ASA there is a command management-access <interface> to designate source interface for ASA management …