×

Setting up MAC Filtering on ASA 5506-X bridged virtual interface by MojarraMuncher in networking

[–]MojarraMuncher[S] 0 points1 point  (0 children)

We have site-to-site VPNs on most of our customer sites. The problem is many other customers do not want to purchase a block of IPs [or are remote and don't have access to ISPs with business class options], so EZvpn is a workaround as the client reaches out through the customer's PAT address they use for their own internet access.

About the game itself by DigitalJumperJack in battlefront

[–]MojarraMuncher 1 point2 points  (0 children)

Micro transactions aren’t even active...

What's the fastest way you've seen someone fuck up their life? by play_Tagpro_its_fun in AskReddit

[–]MojarraMuncher 0 points1 point  (0 children)

What was his APR? That could have been a very stupid move by your friend.

Cut the cord on the cheap and convert an old piece of coaxial "TV" cable into a high-def antenna in 5 minutes by MojarraMuncher in Frugal

[–]MojarraMuncher[S] 0 points1 point  (0 children)

Suit yourself. This is /r/frugal. A simple piece of cable will pick up a ton of stations in suburbs and cities.

I need advise on ASA 5506-x firmware by MojarraMuncher in Cisco

[–]MojarraMuncher[S] 0 points1 point  (0 children)

Sorry, I meant for our ASAvs as well. I didn't mention that this version was going to be standardized for our cloud ASAvs and 5506-Xs

I need advise on ASA 5506-x firmware by MojarraMuncher in Cisco

[–]MojarraMuncher[S] 0 points1 point  (0 children)

I think we are going to be leaning towards 9.8(2). We have infrastructure in the Azure cloud and HA would be very useful.

Anyone playing Contest of Champions ? by davc1234567890 in iosgaming

[–]MojarraMuncher 4 points5 points  (0 children)

I played for two years and just sold my account. Don’t start. You will never catch up and the grind will become a job.

Routers and firewall routing issue by [deleted] in ccnp

[–]MojarraMuncher 0 points1 point  (0 children)

What does your route look like? Have you tried a more specific route than quad 0.0.0.0.0.0.0.0? Is the link between fw and router a trunk? Are you sure the traffic is stopping at the router? Check the around table if the fw and run a cap on the inside interface if the fw. Double check your firewall policies with a packet-tracer input icmp inside PCip 8 8 FWinsideIP detailed.

Can't ping my gateway (GNS3 VM) by binarycow in gns3

[–]MojarraMuncher 0 points1 point  (0 children)

You said your first configuration didn't work. Did you make sure to configure the vSwitch security with the following?

Allow promiscuous mode

Yes

Allow forged transmits

Yes

Allow MAC changes

Yes

Promiscuous mode is particularly important given your vRouter is somewhat of a nested VM in the GNS3 server and the vSwitch will not learn its MAC by default. I am not sure why DHCP is still working, though.

When you get home, try running a

cap k1 int insidematch icmp any any

Then send ICMP traffic, show cap k1, and see if the traffic is returning. That will tell you whether the issue is on your TOR switch or the vSwitch. If you can do packet capturing on your switch, you can rule out that equipment too by looking for return ICMP traffic.

Can't ping my gateway (GNS3 VM) by binarycow in gns3

[–]MojarraMuncher 0 points1 point  (0 children)

Hi again, =D

This might sound like a stupid question but are the router interfaces pulling different network addresses from two different pools? If you are using two different VLANs, you should use two different network addresses [subnets]. A router separates broadcast domains. Your GNS3 VM is connected to a router, so broadcasts that tell the rest of your network should stop at the Eth0 interface. This is why we use the switchport access command, turning a routed port to a switchport. I can't wrap my head around either your network, or how both interfaces are getting IPs as this is an odd setup. Maybe sketch it out in Paint?

If you must have the VLANs and router interfaces on the same subnet, troubleshoot:

Verify ASA has not permit ICMP rules

Traceroute from router to ASA

Apply static MACs to the router interfaces

Run a packet-tracer on the ASA like this

packet-tracer input [interface vlan] icmp [router IP] 8 8 [ASA IP] detailed

Long ass loading times by Minder1 in battlefront

[–]MojarraMuncher 1 point2 points  (0 children)

Feels like the maps are compressed and need to be unzipped each time you play them to save server side memory

The Last Jedi Season by Gola_Chris in battlefront

[–]MojarraMuncher 11 points12 points  (0 children)

They won't. The game is obviously still selling very well.

What small habit, if done everyday over the course of a year, can lead to the biggest personal improvement/ gain? by jacla4 in AskReddit

[–]MojarraMuncher 2 points3 points  (0 children)

We used to call JFDI in my old student org.

Just fucking do it! We had bracelets and everything. If something can be done right now, just fucking do it. You will thank yourself later.

I failed TSHOOT by asdrojas in ccnp

[–]MojarraMuncher 0 points1 point  (0 children)

I used to live in Colombia until a few years ago. And I used to work for a Cisco contractor! I wonder if we knew each other ;-)

Am I crazy for taking SWITCH on a whim? by binarycow in ccnp

[–]MojarraMuncher 0 points1 point  (0 children)

Wallace goes by the Blueprint, so it would be best to watch both series, but take your best notes watching Wallace.

What is the worst advice you've ever received in your life? by Skiingfun in AskReddit

[–]MojarraMuncher 2 points3 points  (0 children)

This is what Blumhouse does to make so many cheap movies. Blumhouse is one of the most profitable production companies but spends a fraction of the money other major studios spend.