Cisco | Cisco IOS router to Meraki Appliance | site-to-site VPN with Zone based Firewalling

Lately I'm busy to configure Cisco IOS routers in combination with Remote offices where we place Meraki Appliances (like the MX64, MX65 or the Z1) When we do this we create also a VPN connection (site to site). In this setup the Main office has a Cisco IOS router. Configuration of the Main Office. (Cisco … Continue reading Cisco | Cisco IOS router to Meraki Appliance | site-to-site VPN with Zone based Firewalling

Advertisements

Cisco | IOS version difference in case of use NO_NAT

Since a couple of years actually I noticed that when I use recent IOS versions on a Cisco ISR device. That there are some struggles with NAT rules in combination with a VPN client. In somecases you have to put the access-list for the NAT rule with a Permit like below. ip access-list extended ACL_OUTSIDE_NO_NAT … Continue reading Cisco | IOS version difference in case of use NO_NAT

Cisco – Office 365 | Office 365 IP object range on a Cisco IOS Router

In addition of my previous post "Cisco – Office 365 | Office 365 IP object range on a Cisco ASA" You might need it on a Cisco IOS router. It can happen that you need to configure an IP object range for office 365. I most cases this is because you have a policy that … Continue reading Cisco – Office 365 | Office 365 IP object range on a Cisco IOS Router

Change Radius-server host to Radius server

Today I was configuring a Cisco router ( ISR2 ) 3945 and on the moment that I configured the Radius settings for the VPN login. Did i get a message ( warning ) "The CLI will be deprecated soon 'radius-server host <IP address>' Please move to 'radius server <name>' CLI." Well okay first was it … Continue reading Change Radius-server host to Radius server

Cisco Router – Site to site configuration on a router with 2 BGP interfaces and 1 Loopback interface with External IP.

How to create a Site-to-Site VPN Between a cisco ASA to a Cisco IOS router with 2 BGP interfaces and a Loopback Interface. I had some days ago a problem. I had a vpn connection but there was no traffic going over this connection. Below in the diagram how I created this solution and how … Continue reading Cisco Router – Site to site configuration on a router with 2 BGP interfaces and 1 Loopback interface with External IP.

Cisco | Show Running-Config commands

On a Cisco IOS Router you have the comman show running-config this will show you the entire configuration which are currently is configured. How ever beside the show running-config you have some extra commands shown here below: sh run | ?   append    Append redirected output to URL (URLs supporting append operation only)   begin     … Continue reading Cisco | Show Running-Config commands

Get rid Cisco IOS router message: %FW-4-TCP_OoO_SEG: Dropping TCP Segment

Some times you will see on a Cisco IOS router the following message in your show logging: 009357: Jul 8 09:28:22.214 CDT: %FW-4-TCP_OoO_SEG: Dropping TCP Segment: seq:104330552 1492 bytes is out-of-order; expected seq:104304632. Reason: TCP reassembly queue overflow - session <internal host>:1535 to <external host>:80 This message can be very annoying if you see it. … Continue reading Get rid Cisco IOS router message: %FW-4-TCP_OoO_SEG: Dropping TCP Segment