Troubleshooting Cisco VPN Phase 2

Problem It’s been over two years since I wrote Troubleshooting Phase 1 Cisco Site to Site (L2L) VPN Tunnels. I’ve always meant to come back and write the ‘Phase 2’ article but never got around to it. This article is NOT intended to be a ‘fix all” for phase 2 problems, it’s designed to point you in the … Continue reading Troubleshooting Cisco VPN Phase 2

Troubleshooting Cisco VPN Phase 1

Problem Site to Site VPN’s either work faultlessly straight away, or involve head scratching and a call to Cisco TAC, or someone like me to come and take a look. If I’m honest, the simplest and best answer to the problem is “Remove the Tunnel from both ends and put it back again”. Just about every VPN tunnel … Continue reading Troubleshooting Cisco VPN Phase 1

Useful Cisco Site-to-Site VPN Phase 1 and 2 Status Troubleshooting Commands

One way is to display it with the specific peer ip. Check Phase 1 Tunnel ASA#show crypto isakmp sa detail | b [peer IP add] Check Phase 2 Tunnel ASA#show crypto ipsec sa peer [peer IP add] Display the PSK ASA#more system:running-config | b tunnel-group [peer IP add] Display Uptime, etc. ASA#sh vpn-sessiondb detail l2l … Continue reading Useful Cisco Site-to-Site VPN Phase 1 and 2 Status Troubleshooting Commands

Tricks: Introducing Cisco RF Planning Tool

Here is a useful planning tool in Wireless Network provisioning for Cisco Meraki AP or the Mobility Express models. This is an online tool called Cisco RF Wi-Fi Planner Tool. Check out https://rftool.cisco.com You can use this by logging in to your Cisco Account. You can put into account external factors in designing your wireless network … Continue reading Tricks: Introducing Cisco RF Planning Tool

Cisco Switch Selector / Model Finder Tool

Few days ago, I shared a link for HPE Switch Selector / Model Finder tool, to help finding an appropriate HPE switch model based on your requirement. My client preferred a Cisco, so I have to find an appropriate Cisco model for them and found a similar tool to that of HPE. https://www.cisco.com/c/dam/assets/prod/switches/cisco-switch-selector-how-to/index.html#/ Check it … Continue reading Cisco Switch Selector / Model Finder Tool

Tricks: Steps to Fix the Cisco VPN 412 Error

Cisco VPN Error 412 for Legacy VPN Client v5.0.0.07   Reason 412. The remote peer is no longer responding". Means that the software VPN Client detected that the VPN server is not responding anymore and deleted the connection. It can be anything from IPSEC traffic being blocked by your upstream device, NAT Issues or simply misconfigured VPN Settings: Once … Continue reading Tricks: Steps to Fix the Cisco VPN 412 Error

Tricks: Cisco VPN on Windows 8.1 or Windows 10 – Reason 442: Failed to enable Virtual Adapter

Problem: Error when connecting to VPN Error Message: Reason 442: Failed to enable Virtual Adapter If you receive this error on Windows 8.1 or Windows 10 while trying to connect with the Cisco VPN Client then the solution is a simple registry fix. To fix: Click Start and type regedit in the Search field and hit enter. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CVirtA Find the String … Continue reading Tricks: Cisco VPN on Windows 8.1 or Windows 10 – Reason 442: Failed to enable Virtual Adapter

Tricks: How to make Legacy Cisco VPN Client to work on Windows 10?

Problem: Legacy Cisco VPN Client (v5.0.07)is not working on Windows 10. Version 5.0.07 is the last version of this client application released by Cisco until they introduced Cisco AnyConnect as their new VPN Client Software. Workaround: Steps below: Step-by-step guide 1. Download and install the Sonicwall 64-bit VPN client from HERE (as of this writing). **NOTE: Make … Continue reading Tricks: How to make Legacy Cisco VPN Client to work on Windows 10?

Applying SSL Certificate on a Cisco Router

Cisco AnyConnect VPN client software, the successor of the legacy VPN Client v5, is restrictive when it comes to connecting to VPN Servers that has invalid, expired or revoked SSL certificates. With that, AnyConnect wont allow you to connect if you are not using a valid SSL certificate on your router. (Tip: Self-signed certificate will … Continue reading Applying SSL Certificate on a Cisco Router