Services

The Cisco AnyConnect Secure Mobility Client is a endpoint software product that is not only a VPN client that provides access through Transport Layer Security and IPSec IKEv2, but also provides an enhanced security check through built in modules. The modules are VPN Posture (HostScan) and ISE Posture module. These modules can allow the AnyConnect…

Port Address Translation allows a mapping of many local private IP addresses to a single global IP address. The router maintains a table of translations by changing the source ports from the local address connection to an identifiable one on the global IP address. To configure port address translation, configure the inside interface with ip…

Static Network Address Translation provides a simple one to one method of translating private to public IP addresses. Pooled NAT provides a more dynamic approach to one to one translation when required. The dynamic translation lasts for at least 24 hours by default when requested by a private IP address. If a one to one…

The Network Address Translation translation table will show static and dynamic entries of NAT on the router. It can be displayed with the command show ip nat translations

Static Network Address Translation translates a local IP address to a global IP address. It is based on a static mapping configured on the router. There are two types of static NAT, Inside Static NAT and Outside Static NAT Inside Static NAT Inside static NAT maps an inside local address, a private IP address, to…

Network Address Translation, NAT, allows an internal IP network (such as those defined in RFC 1918) to appear as a publicly routed network on the internet. A NAT device such as a firewall or router will modify the source or destination IP in a packets header as they arrive on an inside or outside interface.…

The command show glbp with an optional additional parameter of brief will show high level details of the global load balancing protocol configuration and status.

Under interface configuration mode, define the group and virtual IP address. glbp <group-id> ip <ip-address> Preemption is disabled by default for an election of an active virtual gateway. To enable preemption use the command glbp <group-id> preemption GLBP timers can be modified from their defaults (3 seconds hello, 10 seconds hold) with the command glbp…

Gateway Load Balancing builds on existing first hop redundancy protocols by providing gateway redundancy and an additional benefit of load balancing capabilities. GLBP is made up of two roles, the active virtual gateway and the active virtual forwarder. Active Virtual Gateway All the participating routers in a GLBP group will elect one active virtual gateway.…

To check the status of VRRP, use the command show vrrp with the optional additional keyword of brief