Cisco Simple GRE with IPSEC Tunnels
Jul01

Cisco Simple GRE with IPSEC Tunnels

Posted By on Jul 1, 2025

 GRE with IPSEC KB ID 0000951 Problem I’ve spent years setting up VPN tunnels between firewalls. The only time I’ve ever dealt with GRE is for letting VPN client software though firewalls. GRE’s job is to ‘encapsulate’ other protocols and transport those protocols inside a virtual point to point link. Below is the topology, I’m going to use. The tunnel will run form Router R1 to Router R3, once...

Read More
Cisco ASA Domain Authentication and Trust (Allowing)
May08

Cisco ASA Domain Authentication and Trust (Allowing)

Posted By on May 8, 2025

ASA Domain Authentication KB ID 0000973  Problem I cringed this morning when I was asked about this, last time I had to get a client to authenticate to a domain through a firewall, it was ‘entertaining’. The problem is Windows loves to use RPC, which likes to use random ports, so to make it work you either had to open TCP ports 49152 and 65535 (Yes I’m Serious). Or you had to registry hack all your domain controllers...

Read More
Cisco ASA Remote Management via VPN
Apr21

Cisco ASA Remote Management via VPN

Posted By on Apr 21, 2025

ASA Remote Management KB ID 0000984 Problem It’s been ages since I has to do this, I usually just manage firewalls via SSH from outside. But I was out on a client site last week and needed to connect to to my ASA, so I simply connected in via AnyConnect; Note: The same procedure is applicable if you are an IPSEC VPN client, L2TP VPN client, or simply coming in over a site to site VPN link. And attempted to SSH, no joy, I tried...

Read More
ENE-NG and GNS3 – Speed and Duplex Mismatch
Jan17

ENE-NG and GNS3 – Speed and Duplex Mismatch

Posted By on Jan 17, 2025

Duplex Mismatch KB ID 0000983  Problem I don’t know why this happens sometimes with GNS3, and EVE-NG but occasionally I will get a connection between two devices that constantly complains. %CDP-4-DUPLEX_MISMATCH: duplex mismatch discovered on {interface-name} (not half duplex), with {host-name} {interface-name} (half duplex). For the uninitiated, a speed/duplex mismatch, usually happens when both ends of the link are set...

Read More
Error 1722 There is a problem with this Windows Installer package.
Jan03

Error 1722 There is a problem with this Windows Installer package.

Posted By on Jan 3, 2025

Error 1722 KB ID 0000985  Problem Error 1722 is a pretty ‘generic’ windows installer package error. When attempting to install the AnyConnect client software this happened; Error 1722. There is a problem with this Windows Installer package. A program run as part of the setup did not finish as expected. Contact your support personnel or package vendor. Action VACon_Install, location: C:Program FilesCiscoCisco AnyConnect...

Read More