Cisco Firewall :: 5510 / Adding AIP Firewalls To Existing CSC Firewalls Setup?
Mar 3, 2011
I have a customer with active/standby on a pair of 5510's with the CSC modules. They were inquiring about the AIP/ASA, and since this would NOT work in their current setup, would getting a pair of 5510/AIP configured for transparent failover work placed in front fo the existing units? Would I need to have a switch placed between the AIP and CSC ASA's? Or would I setup the ASA's for context based Active/Active failover to interconnect the ASA's to the existing units, but I still see a need for a switch.
View 1 Replies
ADVERTISEMENT
Mar 25, 2011
I was under the impression that those global addresses that we used with NAT were from the outside IP addresses range?Lets say my outside IP address is idk 192.112.40.11 /30 and I only had two usable IPs (since you can't use network and broadcast IPs) so how would I set up NAT for a couple of Inside addresses with a shorting of addresses like this? Idk if that makes sense what I'm trying to say
View 3 Replies
View Related
Jun 5, 2012
We have a configuration where we go through a firewall (ASA 5510) to a router, which decides if it is internet traffic or another network used for colleges etc in Canada called SR Net. If it is internet traffic it then goes through another ASA 5510 to the internet.
When we tested we were not seeing the speed of our internet (about 1/10th). We tested by putting the laptop before the internet firewall and we get the throughput. We also threw the test laptop before the router and we got the throughput expected. But when the test laptop is before the internal (first) firewall we get about 1/10th the speed. We are Nating on both firewalls, so from the inside we are going from a private IP to a Public IP (so it can go to SR Net is need be), then Nating again to the internet IP on the second firewall.
View 2 Replies
View Related
Oct 14, 2011
I have a 5510 ASA and have been given another an told to make them active and standby. Basically the active one is working great but the second one has no config on it apart from the default one, but is the same firmware level. I guess I need a crossover cable, and what happens with the inside and outside interfaces, would they need to go into a vlan on a switch, one inside vlan where the 2 firewalls inside interface go into and another vlan for the outside? Otherwise if it failsover to the standby ASA the inside and outside interfaces wouldn't work.
View 4 Replies
View Related
May 23, 2011
I have an existing VPN tunnel from my branch office to corporate.I want to allow my employees to establish a VPN connection to our local branch office where we have a local server, and not go through the corporate office.Can I set up a direct VPN connection to my router/ firewall at the branch office, even when there is a VPN tunnel already connected between my office and corporate?
View 1 Replies
View Related
Apr 10, 2011
Iam trying to add servers to Tor (torproject.org) to remove country restrictions on videos from different websites such as bbc.com and i don't know how to do it. I got the server but I don't know what do do next?
View 1 Replies
View Related
Jan 10, 2012
'm trying to set up a vpn connection through two ASA 5510 firewalls.My network is as follows:
PC | FW A | Internet |FW B| - lan |
I am trying to achieve the following:
PC | FW A | Internet |FW B| - | DMZ | - | FW C| - | lan |
However, I am not sure where the VPNs will need to terminate and how I will achieve this taking into account the WAN IPs.
View 1 Replies
View Related
Sep 21, 2011
I am trying to upgrade all my firewalls to Security Plus but I am not sure what firewalls are needing the upgrade. Is there a SNMP pull I can do to see what license is on my firewall? example: "This platform has an ASA 5510 Security Plus license." via SNMP
View 1 Replies
View Related
Feb 20, 2012
I want to setup a proxy server and also to create a group policy on proxy that will take effect on two ou's of staff and executives (150 plus pcs) on the executives ou I want the gpo to be only be effective when dey re in the office and non effective when they are outside the office and which to use their own personal internet modem.
View 1 Replies
View Related
Oct 17, 2012
We'll be building a small remote site that will use two Windows 2008 servers. We would like redundancy in firewalls, IPS's and switches. Is it better to buy stand-alone ASA 5510s (with embedded IPS's) and 2960s, or is it a better option to buy a Cat 6000 with FW modules. We'll have several internet IP addresses available.
View 2 Replies
View Related
Feb 26, 2013
I have a working 3800 router which runs on bgp pretty well. Existing setup has 2 serial ports for the bgp and 1 gigabit port for the LAN.Now, i want to add another 3800 as a standby router making it clustered - ACTIVE/STANDBY via hsrp protocol.
1.) What are the implications in adding another 3800. Do i need to reconfigure the ip addresses on my serial? or just the LAN
2.) Are there any additional requirements like firmware versions etc?
View 1 Replies
View Related
Apr 20, 2012
I'm not sure how I turn off my firewall
View 4 Replies
View Related
Oct 16, 2012
I've been trying to open ports 5800 and 5900 for UltraVNC and checking them with online port checkers, but they are always listed as closed. I've even tried taking town windows firewall, my router firewall (although as soon as I disable and apply, it automatically switches back to enabled again), and also DMZ'ing my router. I wonder if it might have something to do with my new modem, but in the config page for that, the advanced settings are locked out. the modem is an arris TM722G, and the router is a linksys wrt-54G with DDWRT firmware.
I'm running windows 7 x64 and using a static local IP, I want to be able to use DynDNS to connect to UltraVNC.
View 19 Replies
View Related
Apr 23, 2012
I am currently working on our Cisco voice platform at work.
Our Cisco firewall engineer has left and I have been given the task of looking after the firewalls as our Chief Exec seems to think that Cisco Voice is similar to Cisco ASA firewalls,
Are there any books/videos out that you can recommend to learn the about firewalls quickly.
View 1 Replies
View Related
Jun 14, 2012
I have two firewalls in 2 different locations. They act as primary and secondary for my WAN connectivity. I would want a way to synchronize access-lists in both without manually replicating.(access list, NAT and Route)FW model cisco 5580
View 1 Replies
View Related
Jun 8, 2011
I am trying think of a better way to provide redundancy on some internally protected networks. We maintain our own WAN/backbone between our primary site and backup site. Is it possible to have two Cisco ASA 5550s in setup for failover at completely different sites as long the networks connected are available?
View 3 Replies
View Related
Jul 8, 2012
We currently have redundant FWSM's and are planning a migration to standalone ASA 5500 series firewalls. However, we have a complete VMWare environment and are looking at the Nexus 1000V. I understand the Nexus 1000V and VSG architecture and implementation, and I do understand that the ASA 1000V is designed for cloud environments. But I do have one question about the ASA 1000V.
Is it possible for an ASA 5500 series firewall to be replaced by an ASA 1000V? Basically, can an ASA 1000V be a sole firewall solution, or are ASA 5500's still needed? Is there a datasheet anywhere that compares the ASA 1000V and ASA 5500 series?
View 4 Replies
View Related
May 8, 2012
I installed Comodo Firewall today, and I couldn't access my Internet from then. I actually liked it's UI and all and want to keep it. The only something that I felt that might be causing the problem is "Use Comodo Secure DNS Server"? Is it likely the reason to be the cause of the problem?
View 1 Replies
View Related
Dec 5, 2012
I have one Fortigate 200B Fire wall, which is using for wifi internet. i had configured one login page in the fourtigate .The path following below system > config > replacement message > authentication > login page.
it was working earlier. suddenly its not working. when i checked this path, that login page message colum was blanked. when i trying to put the message again its not pasting and am unble to type the message also.
View 3 Replies
View Related
Apr 28, 2013
I have ASA 5512X and I'm trying to run CX features on it. but the problem is I don't have SSD drive in the chassis. how can I get one? is any kind of SSD drive compatible with cisco ASA-CX firewalls or i should order it from cisco only? what is the part number for that model?
View 3 Replies
View Related
Jul 23, 2011
We are planning to install a new SSM-4GE module on both Active and Standby firewalls. how can we install an new SSM-4GE with a minimum outage. I was planning to install the module in the following steps.
1. Power off the secondary firewall(FW02).
2. Install a new module.
3. Power up the secondary firewall
4. Power off the primary firewall(FW01)---> in this step will the secondat firewall become active as there is a hardware conflict.
5. Install a new module.
6. Power up the Primary firewall(FW01)
or do i need to power down both the firewalls and then install the modules?i have is that after the installation only one port on the new SSM-4GE module would be in use on Primary firewall(FW01) which is a terminating link from a router. No link would be terminating on the new SSM-4GE module on secondary firewall. Will the firewalls still fail over in this case or does it require a link going to the secondary firewall on new SSM-4GE module(same port as on primary firewall) from the router.
View 4 Replies
View Related
Aug 19, 2011
I am new to firewalls and I am trying to make mine block specific websites but so far have had no success. Here are the settings I am using in the router's admin area:
Security > Firewall > General
Active firewall
Security > Firewall > Rules
[Code].....
View 2 Replies
View Related
Apr 4, 2011
i am using windows vista on my laptop.i was using zone alarm firewall, but switched it to windows firewall.after switching, my internet was cutoff. i can see that i am connected to my network, but cant get to internet.when i run diagnosis on my laptop, it gives me three options:
my Ethernet driver is having hardware issue.
my wireless driver is having hardware issue.
ip protocol binding is having issue. check ipv4 and ipv6 settings.
View 1 Replies
View Related
Jan 16, 2012
I have disabled windows firewall in Windows 2003 server control panel but only few ports are shown opened when i scanned with advanced port scanner why other ports are closed.How to open the closed ports?
View 2 Replies
View Related
Jul 25, 2012
I'm using Fortigate 200A firmware Versionv4.0.3,build0106,090616 and IPS Definitions 2.00673 (Updated 2009-08-11).
View 1 Replies
View Related
Sep 22, 2011
Recently i had suffering with wireless connection problem, currently my wireless router connected to WAN directly, after that go into firewall and then go thru switch to end user PC, for LAN user there is no issue, but for wireless connected PC it is prompted with limited connectivity problem(DHCP is disable on router), after check with ipconfig /all. it seem likely due to wireless PC cannot get the IP from DHCP server. i am using DLink615 router. i had checked firewall setting there is firewall policy that connected all router ip into company LAN, but i don't think there is DHCP VPN setting up. is there anyway i can go thru firewall and get IP from DHCP server because if i set up DHCP on router, it cannot pass thru and access to LAN.
View 9 Replies
View Related
Mar 29, 2011
At my small business (30 employees) we currently don't have a hardware firewall. Should I have one? If so what do you recommend? We are all connected to a Windows Server 2003 domain in one office building.
View 7 Replies
View Related
Jun 29, 2012
Besides MAC address filtering, is there another good / easier way to keep visiting laptops etc from plugging in a CAT cable and accessing a LAN protected by a perimeter firewall?
View 5 Replies
View Related
Jun 5, 2013
In order to do a flash upgrade on a 5510, is there any way to get the files from the existing flash onto the new flash before you replace existing flash? Is there an online procedure?
View 2 Replies
View Related
Jun 25, 2011
For protection of any network architecture,use of firewalls (either hardware or software) only at Network ,Transport and Application Layers of TCP/IP stack. Why not at remaining layers?
View 1 Replies
View Related
Feb 16, 2012
I have a problem discovering some ASA firewalls on a network. I have several ASA firewalls on this /24 network, but some of them I can't discover e.g 149.x.x.107 is discovered ok, but 149.x.x.20 I can't discover. It seems that it's not even trying to discover the devices I have problems with. Nothing is shown in the discovery log.
View 11 Replies
View Related
Feb 13, 2012
I opened my iTunes program today and noticed a roommate's MP3 files were picked up on my network. I think the name of the program is Rocket Tube MP3. Anyway, I came on here because our computers use a Wi-Fi internet connection and I was wondering how much of my web activity (history, cookies, temporary files, etc) he could see from my laptop if his computer was a desktop downstairs. He's very tech-savvy (a former IT guy) and I don't want him snooping through my personal records.
View 2 Replies
View Related
Feb 13, 2012
Am I able to legally download and upgrade software versions still on ASA firewalls?I have not had an issue in the past as this has not effected the license.I cant find anything online saying that you cant due to Cisco's new Software license policy changes.
View 1 Replies
View Related
