Cisco ASA IKEv2 – ‘Failed To Allocate Memory’
KB ID 0001218 Problem This week I was trying to get a VPN tunnel up for a client. They wanted a tunnel from their Cisco ASA into Microsoft Azure. Normally I’d use IKEv1 (because I know how to troubleshoot it!) But the guys running the site in Azure were using policy routing, which needs IKEv2. So I converted from IKEv2 to IKEv2. As I said I’m used to debugging IKEv1, but not IKEv2, so I was struggling to make sense of...
GNS3 – Initial Setup, Adding Routers, Hosts, and ASA Firewalls
KB ID 0000927 NOTE: THIS ARTICLE IS FOR THE OLD VERSION OF GNS3 GO HERE FOR THE NEW ONE Problem I dip into GNS3 every so often, (depending on what I’m working on). And each time I install it, I spend just as long remembering how to set it up, as I do using it! So, if for no other reason than I can use this page as a reference in future, here’s how to get it up and running. Solution Note: At time of writing he latest...
GNS3 – Initial Setup, Adding Routers, Hosts, and ASA Firewalls
KB ID 0001079 Problem I dip into GNS3 every so often, (depending on what I’m working on). And each time I install it, I spend just as long remembering how to set it up, as I do using it! So, if for no other reason than I can use this page as a reference in future, here’s how to get it up and running.</p? Solution Note: At time of writing the latest version is 1.3.6</p? 1. Download GNS3, I usually accept all the...
GNS3 ASA Error – ‘ASDM did not recognize device model ASA5520’
KB ID 0001028 Problem Apart from the fact that’s an appalling spelling of recognise, I got bitten by this last weekend. I don’t use the ADSM as a rule so it would not normally be a problem, the only thing I do use the ASDM for is certificates, (it’s just easier). Solution Last time I saw an error like this I had to use a fiddler script to embed the firewall model in the https traffic, however now there’s a...
Cisco ASA Redundant or Backup ISP Links with VPNs
KB ID 0000544 Problem This method provides failover to a redundant ISP link should your primary network connection go down. IT IS NOT going to load balance the traffic across both interfaces. In this example I’ve also got a VPN to a remote site and some port forwarding to contend with as well. Where we are at the start. Where we want to be Solution Before you go any further the ASA that will have the backup ISP line,...