Welcome back!I’ve sorta been an opposer of the Cisco Anyconnect, and SSL VPN for that matter for some time. Mostly because I have this image in my head of how crappy the WebVPN used to be. I remember it back on the VPN 3000′s and the IOS. This week however I’ve been in San Jose [...]
Tonight I worked on the ASA Per-flow policing. The configuration is fairly straight forward. After ensuring that the VPN works create a class-map to match the tunnel-group and the destination-address like so: class-map vpn_data match flow ip destination-address match tunnel-group ezvpn Next create the policy map to police based on the class we just created: [...]
For those of you preparing for the SNAF exam, I would recommend the book “IPSec.” It’s an easy read, vendor neutral, and gives a great look into the workings of IPSec. Enjoy!
2008 (c) GlobalConfig.net, Using the Minimalistic Theme : Powered by WordPress
