Implementing GDOI into DMVPN
May29

Implementing GDOI into DMVPN

Posted By on May 29, 2025

GDOI into DMVPN KB ID 0000956  Problem Just recently I covered DMVPN, which is a great scalable system for adding new sites to your network infrastructure and have them join an existing VPN solution without the need to add extra config at the ‘hub’ site. One of the advantages of DMVPN is it maintains VPN connections from your ‘Spoke’ sites back to the ‘Hub’ site, but if a spoke site needs to speak...

Read More
Enable PPTP Split Tunneling
Jan01

Enable PPTP Split Tunneling

Posted By on Jan 1, 2025

  PPTP Split Tunneling KB ID 0000997  Problem I was asked yesterday, “When you get five minutes, I need you to enable PPTP split tunneling, because when I VPN into a network I lose Internet connectivity”. On inspection he was using the Microsoft VPN client, I jumped on the VPN device to discover it was a Cisco IOS router. What I discovered was, unlike the firewall VPN’s I’m used to, you DONT set split...

Read More
FortiClient Azure Authentication
Aug18

FortiClient Azure Authentication

Posted By on Aug 18, 2022

FortiClient Azure KB ID 0001797 Problem More and more people are using Azure as their primary identity provider, thanks in no small part to the massive success of Office/Windows 365. So if you want to provide a FortiGate/FortiClient SSL remote access VPN solution then securing it via Azure makes a lot of sense. Multi Factor Authentication: If you have MFA on your Azure accounts then that’s a big box ticked for your...

Read More
Use Azure MFA With Microsoft NPS (RADIUS) Server
Jul20

Use Azure MFA With Microsoft NPS (RADIUS) Server

Posted By on Jul 20, 2021

  KB ID 0001759 Problem I was in a forum last week and someone asked, “Can I enable Azure MFA, on my RADIUS server, to secure access to my switches and routers etc”. It turns out if you want to enable Azure MFA with Microsoft NPS it’s actually quite  simple. So, I’m using RADIUS auth (above) on my NPS server, and it’s simply checking the authenticating user is a member of a domain security group....

Read More
AnyConnect 4 – Plus and Apex Licensing Explained
May11

AnyConnect 4 – Plus and Apex Licensing Explained

Posted By on May 11, 2021

KB ID 0001013  Problem (Updated 11/05/21) Before version 4 we simply had AnyConnect Essentials and Premium licensing, now we have Plus and Apex licensing. AnyConnect Plus and Apex There are in fact three licensing options; Cisco AnyConnect Plus Subscription Licenses Cisco AnyConnect Plus Perpetual Licenses Cisco AnyConnect Apex Subscription Licenses NEW VPN Only perpetual Licences Plus and Apex Contain; AnyConnect PLUS (Cisco pitch...

Read More