Cisco ZBF show commands
A note to self on how to check current sessions on a Cisco router that has Zone Based Firewall configured (ZBF)
Cisco Anyconnect constant reconnection
Deployed a new Cisco ASA Anyconnect gateway. End-users reported constant disconnect/reconnect problems. It was fixed by setting anyconnect mtu to 1200 (in this case). When connection is first established, it builds a SSL tunnel (tcp-443) with a negotiated SSL MTU, after a minute, it tries to switch over to DTLS (udp-443). If the MTU is […]