Best of luck on your next attempt. I am pretty sure IOS WebVPN is covered in the workbook material. About EZVPN and other things - What works for me is making detailed notes of "templated" basic configurations of the technologies, and then repetition and practice.
For example, I have a text file somewhere labeled something like "IOS EZVPN Server DVTI" and in that file is a basic configuration for getting EZVPN server running using DVTI. I have another one for classic EZVPN, etc etc. Then it is just a matter of practice. Make sure you understand all the commands you use and not just what the result of them is Best of luck. On Fri, Apr 27, 2012 at 2:45 PM, tony stalker <[email protected]> wrote: > > Hi Guys, > > Unfortunatly so I failed my Security Lab today :-( and the main thing that > through me (but not the only thing) was IOS webvpn, I have done much studies > on the ASA webvpn but was not expecting IOS webvpn at all, does anyone know > of any good study material for IOS webvpn so i can practice? although im > sure the chances of it coming up on my next attempt are slim i would like to > get it covered just incase. Also EZVPN always seems to get me, I thought I > knew how to configure it (using DVTI + legacy) but then I seem to get > confused and have half the commands for one and half for the other and > advice on ways to remember the differences between to two would be much > appreciated > > Many thanks in advance. > > Regards > > Tony > > >> From: [email protected] >> Subject: CCIE_Security Digest, Vol 70, Issue 58 >> To: [email protected] >> Date: Fri, 27 Apr 2012 12:00:03 -0400 >> >> Send CCIE_Security mailing list submissions to >> [email protected] >> >> To subscribe or unsubscribe via the World Wide Web, visit >> http://onlinestudylist.com/mailman/listinfo/ccie_security >> or, via email, send a message with subject or body 'help' to >> [email protected] >> >> You can reach the person managing the list at >> [email protected] >> >> When replying, please edit your Subject line so it is more specific >> than "Re: Contents of CCIE_Security digest..." >> >> >> Today's Topics: >> >> 1. Re: NAC - eou bypass (Kingsley Charles) >> 2. Re: NAC - eou bypass (Imre Oszkar) >> >> >> ---------------------------------------------------------------------- >> >> Message: 1 >> Date: Fri, 27 Apr 2012 15:10:02 +0530 >> From: Kingsley Charles <[email protected]> >> To: Imre Oszkar <[email protected]> >> Cc: ccie security <[email protected]> >> Subject: Re: [OSL | CCIE_Security] NAC - eou bypass >> Message-ID: >> <cahs0b04hq+qc82d8av6ccmdop9oksx4bnkmfe+ztgq-gz_k...@mail.gmail.com> >> Content-Type: text/plain; charset="iso-8859-1" >> >> You can configure an identity profile. >> >> With regards >> Kings >> >> On Fri, Apr 27, 2012 at 9:17 AM, Imre Oszkar <[email protected]> wrote: >> >> > hi, >> > >> > Does anybody know the configuration steps for NAC L2 Agentless support >> > using the EOU bypass feature? >> > >> > Thanks, >> > Oszkar >> > >> > _______________________________________________ >> > For more information regarding industry leading CCIE Lab training, >> > please >> > visit www.ipexpert.com >> > >> > Are you a CCNP or CCIE and looking for a job? Check out >> > www.PlatinumPlacement.com >> > >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: >> </archives/ccie_security/attachments/20120427/a5d2c627/attachment-0001.html> >> >> ------------------------------ >> >> Message: 2 >> Date: Fri, 27 Apr 2012 08:26:09 -0700 >> From: Imre Oszkar <[email protected]> >> To: Kingsley Charles <[email protected]> >> Cc: ccie security <[email protected]> >> Subject: Re: [OSL | CCIE_Security] NAC - eou bypass >> Message-ID: >> <CAAPV-M=mdphrkkgrewoqmycuqnez5suxtxqcprbodfmcfv-...@mail.gmail.com> >> Content-Type: text/plain; charset="iso-8859-1" >> >> Hi Kings, >> >> As far as I know identity profile is locally configured on the NAD and >> works even if you don't use the eou bypass. >> >> For eou bypass the config guide shows the steps only for the NAD side (see >> below). >> >> Configuring a NAD to Bypass EAPoUDP Communication >> >> To configure a NAD to bypass EAPoUDP, perform the following steps. >> *SUMMARY STEPS* >> >> *1.* enable >> >> *2.* configure terminal >> >> *3.* ip admission name *admission-name* eapoudp bypass >> >> *4.* eou allow clientless >> >> *5.* interface type *slot* / *port* >> I assume there are some steps which has to be done on the ACS side as well >> but I couldn't find any doc about this. >> There is a NAC L2 Agentless profile template in the ACS, I have tried to >> use that but couldn't make it work. >> >> Any thoughts? >> >> Thanks! >> Oszkar >> >> >> >> On Fri, Apr 27, 2012 at 2:40 AM, Kingsley Charles < >> [email protected]> wrote: >> >> > You can configure an identity profile. >> > >> > With regards >> > Kings >> > >> > On Fri, Apr 27, 2012 at 9:17 AM, Imre Oszkar <[email protected]> wrote: >> > >> >> hi, >> >> >> >> Does anybody know the configuration steps for NAC L2 Agentless support >> >> using the EOU bypass feature? >> >> >> >> Thanks, >> >> Oszkar >> >> >> >> _______________________________________________ >> >> For more information regarding industry leading CCIE Lab training, >> >> please >> >> visit www.ipexpert.com >> >> >> >> Are you a CCNP or CCIE and looking for a job? Check out >> >> www.PlatinumPlacement.com >> >> >> > >> > >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: >> </archives/ccie_security/attachments/20120427/36c35819/attachment-0001.html> >> >> End of CCIE_Security Digest, Vol 70, Issue 58 >> ********************************************* > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com -- Regards, Joe Astorino CCIE #24347 http://astorinonetworks.com "He not busy being born is busy dying" - Dylan _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
