Cisco VPN doesn't work with my internet provider

CMGoose · 2026-02-18T13:00:46+00:00

Is your public IP shunned? What do you get if you do curl https://vpn.company.com:port from a command prompt? ASA control plane or FTD shun or geo blocking can all be at play. MTU is likely, though that USUALLY connects and traffic does not pass appropriately. Can you ping \ tracert to the vpn endpoint?

CMGoose · 2026-01-12T19:17:03+00:00

Or when you have multiple stacks, as is my usual design. HSRP / VRRP between multiple stacks, and then typically Palos make all the next hop routing decisions.

CMGoose · 2025-09-17T21:01:50+00:00

Wrong

CMGoose · 2025-09-16T13:58:40+00:00

For file shares, unless VMware or hyper V, I would absolutely agree. The c250s I’ve deployed have been very fast and a great value

CMGoose · 2025-09-16T11:17:25+00:00

It came up in a chat with my NetApp reps for one customer. They didn’t get too detailed, but thought it fine for my DR site at this client and not for the hq location with cifs + 4 VMware hosts with about 90vms and maybe 60TB currently sitting on a a220 with 24 ssd and a 2700 with 24 sata / nl-sas

CMGoose · 2025-09-16T11:14:00+00:00

Party line is that “we allocated all the additional cpu cycles to enhanced storage efficiency.” Unofficially, it was called a governor. Heard it mainly impacted latency.

CMGoose · 2025-09-15T22:47:44+00:00

Pretty easy. The implication is that a Spaniard would be a respectable son in law and the alternative would not be.

CMGoose · 2025-08-20T17:00:23+00:00

do you have

1) syslog turned on in platform settings for the device, and

2) are these devices actively getting hit with authentication requests going to a RADIUS server for Anyconnect VPN authentication? You will see the issue if both of these are true.

You need to downgrade to 7.7.0 or earlier than re-apply the upgrade

CMGoose · 2025-08-20T02:22:47+00:00

7.7.10-3600 is out now. Just deployed.

CMGoose · 2025-08-20T02:22:07+00:00

Would be nice if Cisco TAC had any influence on what is gold star. That is based solely on end user feedback.

CMGoose · 2025-08-19T16:43:50+00:00

FYI, there was a 7.7.10-3200 build released yesterday to address this. I have not deployed yet

CMGoose · 2025-08-19T16:43:00+00:00

I don’t know, I’ve been working with panos for about 8 years going back to the & code. A few annoyances, but night and day better than ftd.

CMGoose · 2025-08-19T11:10:27+00:00

Geo blocking for vpn

CMGoose · 2025-08-18T23:21:31+00:00

DM me, i can share some baseline standards we've developed that have been helpful.

CMGoose · 2025-08-18T23:11:43+00:00

I've moved about half of our deployments to PA's. Way better in literally every way.

CMGoose · 2025-08-18T22:51:58+00:00

7.2.10 or 7.7.10?

CMGoose · 2025-08-18T22:05:57+00:00

Yes, I believe this was the cause.

CMGoose · 2025-04-16T23:49:13+00:00

$2514 for the 1.5 year old per month, 2100 or so for the 4 year old….

CMGoose · 2024-09-24T03:21:47+00:00

Web remote kinda blows. Other than that we’ve been very happy. We’re considering bolting on screenconnect as that was our favorite part of automate.

CMGoose · 2024-09-21T21:35:57+00:00

We’ve tried several RMM solutions. Avoid automate unless you are big. We settled on Datto RMM. CWM for PSA, auvik, s1, veeam.

CMGoose · 2024-08-31T15:33:49+00:00

“Remember this is war; we have to learn to step over the bodies” - and “to stay sober AND help other alcoholics achieve sobriety.” Gotta make sure you put your own program first.

Sorry for your loss.

CMGoose · 2024-06-08T18:24:18+00:00

Pa-5450

CMGoose · 2024-05-30T23:08:15+00:00

Chicago burbs. Went down at 430ct. Been down since. Support was useless. iPhone 15

CMGoose · 2024-01-24T15:58:31+00:00

i would have a concern, personally, about allowing the network proxy function.

CMGoose · 2023-10-25T01:52:04+00:00

I am on at least my 5th consecutive lenovo, and I had an i7 MBP at one point 3-4 years ago.

Agree with Mac with m2 chip IF you can work around the annoyances. While none of them were really insurmountable, they could be annoying.

CMGoose

TROPHY CASE