Cisco Firewall :: 1814 - IOS Firewall Keeps Stopping Mobile Apps

Nov 26, 2012

The other day I set up a firewall on my Cisco 1841 router, it all seems to work fine except for a few small problems.  2 wireless devices an iPhone and an Android tablet are having some problems with 1 or 2 apps. iPhone 6.0.1Facebook app and the App store will not load Android tablet ICS BBC iPlayer and Google play app store wont load or play content. Both devices with their issue were working fine until the new firewall was installed.  I’ve tried opening ports and adding ACLs but nothing seems to work.  I’ve included my start up config. All other PCs, laptops, smartphones and iPads work fine.

View 3 Replies


ADVERTISEMENT

Cisco Firewall :: 1841 / IOS Firewall Keeps Stopping Mobile Apps?

Nov 11, 2012

The other day I set up a firewall on my Cisco 1841 router, it all seems to work fine except for a few small problems.  2 wireless devices an iPhone and an Android tablet are having some problems with 1 or 2 apps.  iPhone 6.0.1 Facebook app and the App store will not load Android tablet ICS BBC iPlayer and Google play app store wont load or play content.  Both devices with their issue were working fine until the new firewall was installed.  I’ve tried opening ports and adding ACLs but nothing seems to work.  I’ve included my start up config.  All other PCs, laptops, smartphones and iPads work fine. 
 
Building configuration... 
 
Current configuration : 5551 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!

[code].....

View 3 Replies View Related

Cisco Firewall :: ASA5510 ESMTP Inspection Stopping Outbound Mail

Jun 13, 2011

I am having an issue with an ASA 5510, running 8.4(1) code, causing outbound mail to remain in the SMTP server queue (Exchange 2007). This only happens with some remote mail servers. The connection usually ends with the remote server eventually sending a TCP reset.
 
I've taken multiple inside and outside packet traces.Other trace's contain either X's preceding various sections of the stream content or all X's in the content. The X's only appear when inspection is enabled.
 
Disabling inspection is the only thing that seems to allow mail to flow. I find this curious because I'm running this same ESMTP policy on other ASA's. However, they are on 8.3 code.
 
Most everything I find when searching on this subject says to disable ESMTP inspection. [code]

View 4 Replies View Related

Linksys Wireless Router :: EA3500 / Facebook On Mobile Devices With Android OS Using Both Apps And Browser?

Jun 4, 2012

Recently purchased the EA3500 router.  Everything seems to work great except for Facebook on mobile devices with Android OS using both apps and browser.  I can access FB using a laptop's browser. 

View 9 Replies View Related

Cisco Firewall :: 5520 AnyConnect Mobile Not Handling Certificates Correctly

Oct 31, 2012

I have an SSL VPN set up on my ASA 5520 with a self signed cert. When I run the AnyConnect install on my desktop machine I have click through a few windows to accept the certificate. When I connect through the mobile client on Android, the connection goes right through without a prompt to import/choose/download a certificate. I'm able to connect but I'm wondering if the phone has actually recieved a certificate. I'm in the 'Advanced Connection Editor' screen and the certificate setting says "Automatic".

View 2 Replies View Related

Cisco WAN :: 1814 - Access-List Blocking Through VPN Tunnels

May 30, 2011

After adding the below Extended Access-List Entry into my 1841 Router, access-list 102 permit ip host 192.168.1.1 any. I can access the Internet from this client but cannot connect to this client from another branch through vpn tunnels. I can access all other clients that do not have this access-list entry.

View 5 Replies View Related

Cisco VPN :: L2L With ASA And C2900 Always Stopping To Ping Each Other

Feb 23, 2012

We have a vpn L2L with an ASA and C2900 and always stopping to ping each other but the vpn still UP and can each the others devices behind the peers.
 
Everytime we have to issue on router "clear cry isa peer" or on asa "clear ipsec peer" to start to ping each other but after seconds it's stopping to ping again.Is there something to fix it permanently? We did some debug crypto on asa but no information was logged.

View 1 Replies View Related

Cisco AAA/Identity/Nac :: Stopping Update In ACS 5.1

Mar 15, 2011

I tried to update my ACS 5.1 appliance. I applied patch 5.1.0.44.3 and made an big mistake: I booted the server due to the fact that it was not reachable after one hour after appplying the patch. Now the server shows following message, when I try to apply other patches: Can not process requested software update operation since this ACS Instance currently has a software update inprogress.
 
My question: Is it possible to stop the upfate process and apply the other updates or is it possible to revert this update to go back to the previous patch level. For information: the appliance shows only the patches 5.1.0.44.1 and 5.1.44.0.2 installed.

View 3 Replies View Related

Cisco :: Stopping SNMP Traps For Interface Up / Down?

Oct 3, 2012

I am getting these unwanted entries on my syslog server.03/10/2012 12:57:48 172.21.113.20 Error 23898: Interface FastEthernet0/1, changed state to downI tried to stop them with no snmp trap link-status but it hasn;t worked.[CODE]

View 4 Replies View Related

Internet Connection Frequently Stopping

Jul 22, 2011

I am having a huge problem since yesterday. I was using my wireless connection like always and it has randomly started to stop working for brief periods of time. It's like a continuous cycle where the internet works smoothly and fast (like always) for 30 secs at a time, then it goes into 15 secs where nothing works.

View 9 Replies View Related

Downloads Starting And Stopping Constantly?

Aug 6, 2012

First, I'm running Windows7 64 bit. So whenever I download a decently sized file; my download will start and get good speed for a few minutes, then it will drop off and stop and my connection to the internet will be lost for a short time while the connection resets. This happens if I'm using a program like Steam to download a game, torrenting something, sometimes on my Xbox 360 when it needs to update itself or a game, occasionally on a large app or album off of iTunes or patching an online game. However, I have no issue watching YouTube videos or playing an online game while also having TeamSpeak running in the backround to chat. I don't lose connection when browsing the internet at all and recently I was able to stream a live event without issue but I only tried that once (I don't have Netflix or anything similar).It usally isn't a big issue because my download will pick up where it left off most of the time but its a pain in the butt to have to add on an extra hour to a download sometimes for this.

View 4 Replies View Related

Downloading Stopping Others From Accessing The Internet?

Apr 25, 2012

I haven't been able to get a decent answer to no matter how much googling etc I do. We have a problem in our flat where any time someone downloads something everyone else in the flat loses access to the internet until that person finishes their download or stops it. We are all accessing the internet through the same router, 3 of us wirelessly and 1 wired. The computers which are for some reason blocked by the other person downloading can't even access the router to do a reset or work out whats happening. [URL] gives our download speed as 14.80Mbps which isn't great but okay for good old NZ.Why would it be that 1 person downloading is preventing the others from accessing the net, do some downloads somehow take full control of all the available bandwidth ?.And is there any way to make it so that it doesn't happen, like make it so no computer can use all the bandwidth at a time ?, ie my flatmate can download his whatever but I can still send emails etc at the same time.

View 3 Replies View Related

Cisco :: LMS 3.2 - Ciscoworks Daemon Manager Stuck At Stopping State?

Jan 1, 2013

I am working on LMS 3.2 . Tried to stop the daemon service with " net stop crmdmgtd ". It stuck on stopping state since few hours now. I can still open the application. How to terminate the previous command and restart the daemon service.

View 1 Replies View Related

Cisco WAN :: WS-C3560G-24TS-S / Inter Vlan Routing Stopping

Jun 16, 2011

we need config on WS-C3560G-24TS-S inter vlan communication stopping as per attached document.

View 1 Replies View Related

DIR-655 - Slow Internet Speed After Stopping The Data Download?

Jan 16, 2013

I am experiencing strange problem about slowing down the internet speed after downloading is stopped in between. I then have reboot the desktop to regain the speed.

My networking as below:

DSL Modem
Dlink DIR-655 Router
Desktop A (Wired Network)
Desktop B (Wired Network)
Laptop (Wireless Network)

If I am downloading a file (1gb) on Desktop A and for some reason I have to stop it, then internet connection is desktop A , desktop B and laptop is almost killed. To get the speed back, I need to reboot Desktop A. All computers are on Windows 7.

If completely download the file, the internet speed is good on all the computers. Before downloading the speed is: After stopping the download the speed is :

View 2 Replies View Related

Linksys Wired Router :: RV082 Stopping Communication

Feb 26, 2013

I have a RV082 router that is currently in prod. I have a Dell Powerconnect 5424 switch that I'd like to use in place of the unmanaged switches I am currently using.I have the switch configured with it's IP, subnet, gateway, etc. I can plug devices into it and communicate with no problems. However, when I attempt to plug in the router, nothign will communicate to or from the switch. The devices I plugged in will not talk to each outer, ping the switch, or the router. Also cannot ping to the switch from a device plugged into the router. If I unplug the router, comm opens back up.

View 1 Replies View Related

Cisco Routers :: RV082 - Stopping Any Communication On Dell Powerconnect 5424

Feb 25, 2013

I have a RV082 router that is currently in prod. I have a  Dell Powerconnect 5424 switch that I'd like to use in place of the  unmanaged switches I am currently using.
 
I have the switch  configured with it's IP, subnet, gateway, etc. I can plug devices into  it and communicate with no problems. However, when I attempt to plug in  the router, nothign will communicate to or from the switch. The devices I  plugged in will not talk to each outer, ping the switch, or the router.  Also cannot ping to the switch from a device plugged into the router. If I unplug the router, comm opens back up.

View 1 Replies View Related

Dell :: WWLAN DW5620 Mobile Broadband Gobi 2000 Mobile Broadband Utility

Aug 9, 2011

I need to change providers from Verizon to AT&T.  This modem came with the AT&T Sim card installed in my notebook.  The software (Dell Mobile Broadband Utility Help) says " Choose Network Selection from the Settings Menu. Select AT&T and click Load."  Unfortunately, Network selection is not an option.

How do I do it?  This modem is compatible with Verizon, AT&T and Sprint networks. 

View 1 Replies View Related

Cisco :: Remove Unwanted Apps From LMS 3.2?

Feb 5, 2013

Is that possible to remove DFM and IPM from LMS 3.2 I have never used and LMS appears to be slow and i am thinking  trimming some unwanted apps may work.

View 3 Replies View Related

Cisco Wireless :: 3500S - Getting Rid Of Old Apps

Apr 4, 2013

I have a bunch of 1242 access points that we replace with 3500s. Does Cisco have a good program to reuse these devices? We tried trading them in but for some reason it never pans out.

View 5 Replies View Related

Cisco Firewall :: 5515x Apply On Firewall / Switches To Make Implementation Successful

Apr 22, 2013

I will be implementing a new firewall (cisco asa 5515x) on my existing  3750x (server switches) and my 2960s (user switches). What should I need to apply on my firewall and swtiches to make the  implementation successfull.  I will put my 3750x as my DMZ and my 2960s  as my inside.  The 3750x have multiple subnet and also the 2960s.which  features and technologies i need to know on those 3 products.  my 3750x  and 2960s don't have any ACL defined and most common features are vlan,  switchport, trunking, spanning-tree, stacking, vtp.how  my asa knows that my 3750x/2960s have multiple vlans.  my current  connection right now on 3750x and 2960s is just through 6 ports i  assigned as one trunk, below is my config [code]

my  2960s vlans are almost the same with my 3750x except vlan 160, 170,  192.  but of course when i put this in asa, i have to segragate vlan for  3750x (192, 100, 110,160, 170) and 2960s (130, 150).  for my 2960s  connection to the asa and since this will have big bandwidth, i will use  3 ports on my asa (and trunk it) connecting to my 2960s and i will use 2  ports on my asa (and trunk it) connecting to my 3750x.  the one  internet ports and my one management ports on my asa will stay like  that.

View 2 Replies View Related

Cisco Firewall :: ASA5510 - Unable To Ping From User Desktop To Firewall Inside IP

Jun 11, 2012

I am able to ping from Switch to firewall inside ip and user desktop ip but unable to ping from user desktop to  FW Inside ip.. config is below for both switch and FW Cisco ASA5510....
 
TechCore-SW#ping 172.22.15.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.22.15.10, timeout is 2 seconds:

[Code].....

View 7 Replies View Related

Cisco Firewall :: 2901 - How To Avoid SMTP Inspection On Zone Based Firewall

Aug 2, 2011

We had a problem with SMTP inspection dropping some regular emails (Cisco 2901 IOS 15.0). The original configuration.

View 2 Replies View Related

Cisco Firewall :: 2901 To Avoid SMTP Inspection On Zone Based Firewall

Jun 21, 2011

We had a problem with SMTP inspection dropping some regular emails (Cisco 2901 IOS 15.0).Incoming mails are going thru Spam and Virus Blocker so that bypassing SMTP inspection is not security issue in this case.

View 1 Replies View Related

Cisco Firewall :: ASA 5585 / Identity Firewall With Single Forest / Multi-Domain

Dec 28, 2011

I have a question with regard to setting up the ID firewall on the ASA 5585 in a single forest, multiple domain windows network.Currently I have a semi-operational IDF at the top level but can't find users on the lower other domains, here is the setup:I have 3 domains.

[URL]
 
Both domains have a two way parent-child trust and I can look for users in AD Users/Computer on both domains.  I initially setup the ASA to look at domain1.test.com using an LDAP aaa-server per the IDF instructions, and then proceeded to configure the ad-agent.  I installed the adagent on the domain1.test.com domain controller configured the settings on that system and had no problem adding users to the firewall and getting functionality within domain1.  I looked to see if I could see domain 2 and domain 3 users and found none.  I went ahead and added the domain2 system to the adagent on the DC and the system says that it is up, but when I search for users is not pulling them from domain2.  Instead, it shows domain1 users as domain2user1.  I also configured another adserver in the ASA to search ldap on domain 2 to no avail.The cisco documentation states the following:•Before you configure even a single domain controller machine using the adacfg dc create command, ensure that the AD Agent machine is first joined to a domain (for example, domain J) that has a trust relationship with each and every domain (for example, domain D[i]) that it will monitor for user authentications (through the domain controller machines that you will be configuring on the AD Agent machine). Single Forest, Multiple Domains—All the domains in a single forest already have an inherent two-way trust relationship with each other. Thus, the AD Agent must first be joined to one of the domains, J, in this forest, with this domain J not necessarily being identical to any of the domains D[i] corresponding to the domain controller machines. Because of the inherent trust relationship between domain J and each of the domains D[i], there is no need to explicitly configure any trust relationships.Reading that it sounds like it should just work.  I had everything properly configured before I installed the adagent, but I'm guessing that there is a chance that you can't have the adagent on the top level DC and get to communicate with the lower level domains. 

View 1 Replies View Related

Cisco Firewall :: ASA Firewall Positioning In Transparent Mode Between 6509 Core Switch And WLC

Apr 26, 2011

I do have the below setup,,
 
1. I have 6509 switch
 
2. I have 2 WLC configured in Active/Active mode connected in Trunk mode (L2 Port-Channel) connected with 6509 switch
 
3. On switch side i have configured the port as Trunk
 
4. L3 SVI for wireless users are created in 6509 switch (attached the diagram).
 
I would like to introduce a Cisco ASA 5520 firewall with AIp-SSM module so that all wirelees traffic can be inspected.
 
The issue is: Without changing any configuration in the network (switch & WLC) is it possible to introduce the firewall?

View 2 Replies View Related

Cisco Firewall :: Monitoring ASA 5505 Firewall Active / Standby Pair Using SNMP?

Sep 7, 2011

How I can actively monitor the interfaces and overall status of 2 x ASA 5500s in an Active/Standby configuration?
 
I can setup monitoring of the interfaces on the Active member but I'm not sure how to manage the Standby member?

View 1 Replies View Related

Cisco Firewall :: IOS Zone Based Firewall Websense URL Filtering Feature On 881G

Jul 27, 2011

I've been trying to configured Websense urlfiltering using ZFW feature on my Cisco 881G router. The router is running on IOS 15.0(1)M with Advanced IP Services. And I have confirmed it supports urlfilter feature.
 
This is what I tried to accomplish but IOS version 15.0x seems to have different command set.
-----------------------
class-map type inspect httptraffic
match protocol http
parameter-map type urlfilter param
server vendor websense 10.20.30.40
[Code]...

View 2 Replies View Related

Making Configuration Between 2 Apps?

May 20, 2011

Making Configuration between 2 Apps?

View 1 Replies View Related

Cisco Firewall :: SSM-4GE Firewall Has 5 DMZ Segments And Specific Segment For Internet Traffic

May 23, 2013

I was asked to enable netflow in an ASA Firewall for Orion/Solarwinds server monitoration. Firewall is a 5550, with 4G RAM, and no extra modules but SSM-4GE. This firewall has 5 DMZ segments and ans specific segment for internet traffic.There are segments as unique subinterfaces in physical interfaces. Other segments as individual subinterfaces in the same physical interface (but individual VLANs)Usually firewall CPU flows between 30% to 40%. Rarely to 50%.
 
1 - How dangerous or risky could be implement netflow in this firewall?...This firewall is very critical for the customer. My concern is regrading CPU, traffic generated, memory, etc
 
2 - In a month, firewall will be migrated from 8.2 software version to 8.4 software version. Is there any incompatibility in some commands?...Would be recommended to perform netflow configuration after software upgrade?
 
3 - How could it be implemented for Orion monitoring, regarding each individual sub-interface (and so, each VLAN assigned)?I there any recommendation regarding configuration, best practices?

View 6 Replies View Related

Cisco Firewall :: ASA 5510 - Users Unable To Access Internet Through Firewall

Feb 26, 2013

I have some problem with the ASA 5510 ver 7.0(6). My manager wants to keep this as backup. tried lots of things but still users not able to access internet nor can i ping anywhere.For example when i ping 4.2.2.2 i dont get any reply.The runing config is below for ur ref :
 
HQ-ASA-01# show  running-config
: Saved
:

[Code]......

View 9 Replies View Related

Cisco Firewall :: ASA 5510 / Multiple VLANs Behind Single Firewall Segment?

Feb 5, 2012

I need to create a firewalled segment that not only separates hosts from general population, but also from each other.  The solitary confinement of firewalled segments.I know that I could create a bunch of sub-interfaces, one for each host or group that needs to be isolated, but I'd really rather not have to do that if possible.  1) It could become a management nightmare between ACLs and sub-interfaces and 2) it's a waste of IP addresses.s there any way that I can create a bunch of separate VLANs behind the firewall and have them all terminate at the firewall, using a single firewall IP address for the gateway?
 
VLAN 1 - hosts 1.1.1.5 and 1.1.1.6VLAN 2 - hosts 1.1.1.7
Firewall DMZ Interface - 1.1.1.1VLAN 3 - hosts 1.1.1.8 and 1.1.1.9 

This way, the hosts are isolated and can't talk to each other unless they're on the same VLAN.I'm working with an ASA 5510 running 8.2.4(4).

View 1 Replies View Related

Cisco Firewall :: Support Of Jumbo Frames On ASA 5500 Firewall Appliance?

Feb 28, 2010

Can any ASA 5500 in particular the ASA5510 firewall support jumbo frames (i.e. greater than the default standard 1500 Bytes frames)?. I plan to use the ASAs to setup a point-to-point IPSec tunnel and need an Application frame of 4Kbytes intact and not segment it.I have done little checking on the Cisco Website and see it mention of Jumbo frames on the 5580 on 10Gig interface but didn't see mention 5510. 5580s are way over-kill and expensive for what I need is to run a mission critical one IPSec point-to-point with maximum of no more than 100Kbps so 5510 is perfect for me but not sure if it can carry the jumbo frame?
 
On the routers and switches it's the MTU settings and they are configurable per interface and I am OK and the circuit is T1 which the Telcos said it's OK since it's physical layer so the only unkown is the firewall.

View 2 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved