Cisco IOS – Enabling LLDP
Mar08

Cisco IOS – Enabling LLDP

KB ID 0001289 Dtd 08/03/17 Problem If you're running Cisco IOS on all you devices then you can use CDP  to see what's directly connected, (unless you are on a Cisco firewall, but I did say IOS devices).  Petes-Switch#show cdp neighbors Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone, D - Remote, C - CVTA, M - Two-port Mac Relay Device ID Local Intrfce...

Read More
Cisco FirePOWER is Blocking an Application
Feb27

Cisco FirePOWER is Blocking an Application

KB ID 0001286 Dtd 27/02/17 Problem A few weeks ago I installed a 5525-X firewall for a client, and set it up as follows; ASA Setup FirePOWER Services (for ASDM) And all was well, then a week later I got an email… One of our teachers is doing a project with MATHS and ICT involving bitcoin. Basically, he has something called BITCOIN CORE WALLET installed and it used to work with the old Firewall. I’ve installed it on my work...

Read More
AnyConnect – “Connection attempt has failed due to server communication errors’
Jan31

AnyConnect – “Connection attempt has failed due to server communication errors’

KB ID 0001279 Dtd 31/01/17 Problem We had a firewall fail at work this week, as part of the rebuild the latest OS was put on it, version 9.7(1). I thought no more about it until I tried to VPN in and got this; I used my Windows 10 VM and that connected fine, only my MacBook could not connect, this VPN tunnel is a big deal I need it to get onto client's networks. I tried my other VPN connections and every one was fine, only the...

Read More
Cisco AnyConnect – Allow Domain Password Change via LDAP
Jan14

Cisco AnyConnect – Allow Domain Password Change via LDAP

KB ID 0001273 Dtd 14/01/17 Problem   If you have remote users who connect via VPN, and a policy that forces them to change their password periodically, this can result in them getting locked out without the ability to change their password (externally). If your Cisco ASA is using LDAP to authenticate your users, then you can use your remote AnyConnect VPN solution to let them reset their passwords remotely. Solution Standard LDAP runs...

Read More
Cisco – LDAP AAA Error ‘AAA Server has been removed”
Jan11

Cisco – LDAP AAA Error ‘AAA Server has been removed”

KB ID 0001271 Dtd 11/01/17 Problem Seen while attempting to test AAA authentication via LDAP to a Windows domain Controller. Authentication test to host {IP-Address} failed. Following error occurred -  ERROR: Authentication Server not responding: AAA Server has been removed Solution This is a terribly ambiguous error! What it means is that the ASA cannot bind to active directory, either because; The ASA bind account password is wrong....

Read More
Cisco Licence Differences LAN-Lite / LAN Base / IP Base / IP Services
Jan11

Cisco Licence Differences LAN-Lite / LAN Base / IP Base / IP Services

KB ID 0001270 Dtd 11/01/17 Problem Actually finding the answer to this question is far more challenging than it needs to be! As usual Cisco can change this on a whim so before you purchase any equipment it’s still a good policy to check on the feature navigator. Solution This is about the best reference I’ve found. Although anyone who can tell me what the correct Layer 2 differences between Enterprise Access and Complete...

Read More