Policy-map type inspect dns preset_dns_map Secondary-authentication-server-group Duo-Ldap use-primary-username Group-policy GroupPolicy_pegasus attributesĭns-server value ****************************************Īnyconnect profiles value pegasus type userĭynamic-access-policy-record DfltAccessPolicy Group-policy GroupPolicy_pegasus internal Vpn-tunnel-protocol ikev1 l2tp-ipsec ssl-clientless Vpn-tunnel-protocol ssl-client ssl-clientless Ldap-login-dn dc=********************,dc=duosecurity,dc=comĪaa local authentication attempts max-fail 3 Map-value memberOf CN=AuthorisedAAAUsers,CN=Users,DC=JTH,DC=local GroupPolicy_pegasusĪaa-server LDAPSERVERS (Inside) host ************* Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute Icmp unreachable rate-limit 1 burst-size 1Īccess-group outside_access_in in interface outsideĪccess-group Inside_access_in in interface Inside Ip local pool PegasusPool 10.200.10.2-10.200.10.253 mask 255.255.255.0Īccess-list outside_access_in extended deny ip any anyĪccess-list An圜onnect_Client_Local_Print extended deny ip any4 any4Īccess-list An圜onnect_Client_Local_Print extended permit tcp any4 any4 eq lpdĪccess-list An圜onnect_Client_Local_Print remark IPP: Internet Printing ProtocolĪccess-list An圜onnect_Client_Local_Print extended permit tcp any4 any4 eq 631Īccess-list An圜onnect_Client_Local_Print remark Windows' printing portĪccess-list An圜onnect_Client_Local_Print extended permit tcp any4 any4 eq 9100Īccess-list An圜onnect_Client_Local_Print remark mDNS: multicast DNS protocolĪccess-list An圜onnect_Client_Local_Print extended permit udp any4 host 224.0.0.251 eq 5353Īccess-list An圜onnect_Client_Local_Print remark LLMNR: Link Local Multicast Name Resolution protocolĪccess-list An圜onnect_Client_Local_Print extended permit udp any4 host 224.0.0.252 eq 5355Īccess-list An圜onnect_Client_Local_Print remark TCP/NetBIOS protocolĪccess-list An圜onnect_Client_Local_Print extended permit tcp any4 any4 eq 137Īccess-list An圜onnect_Client_Local_Print extended permit udp any4 any4 eq netbios-nsĪccess-list Inside_access_in extended permit tcp any object dc3.***** eq domainĪccess-list Inside_access_in extended permit tcp any object dc1.***** eq domainĪccess-list Inside_access_in extended permit tcp any object api-****************. eq ldapsĪccess-list Inside_access_in extended permit ip any any Xlate per-session deny udp any6 any6 eq domain Xlate per-session deny udp any6 any4 eq domain Xlate per-session deny udp any4 any6 eq domain Xlate per-session deny udp any4 any4 eq domain #Cisco global vpn client windows 10 acquiring ip password: Hardware: ASA5516, 8192 MB RAM, CPU Atom C2000 series 2416 MHz, 1 CPU (8 cores)Įnable password IFomWluDEyOnsYVw encrypted Please find below the following configuration of my firewall. Just stopped working, and can't even ping the inside interface once connected.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |