I have a cisco ASA 5510 runing IOS version 7.2(5).I am using asdm-647.bin file for accessing asdm. But when i do https:\<ASAIP> , it takes me to user authentication. on entering the username password it gives me the below error.The page cannot be found The page you are looking for might have been removed, had its name changed, or is temporarily unavailable. Please try the following:If you typed the page address in the Address bar, make sure that it is spelled correctly.Open the 172.16.5.3 home page, and then look for links to the information you want. Click the Back button to try another link. Click Search to look for information on the Internet. HTTP 404 - File not foundInternet Explorer not sure what the issue is. I am accessing it from the inside network. I have enabled http server and also gave inside network http access.
I have ASA 5510 with CSC-SSM-10 .ASA 5510 IOS version- 8.4.2 and CSC-SSM-10 IOS version 6.6.1162.Web filtering is working fine with respective to my configuration.From yesterday morning, i was facing issue with the sites like gmail, webmail.After giving credentials like username and password in the web page, the page is not resonding.In troubleshooting process, i removed all the acls, class maps which will direct all the traffic towards the CSC. In this scenario all my mail service sites are opening.If we apply the these ACLs and Class-Maps, only my mail service sites only affecting.
I have a 5510 with just a inside and outside interface, everything works on the lan inc internet access and exchange hosting to the net, but I have another exchange server on the wan and I can't get to that because I'm not natting inbound traffic and the default route sends traffic elsewhere.
If I put a nat any statement on the inside interface inbound it works, however all LAN internet traffic fails with a No translation group found error.I've removed the static nat commands as they are all named anyway, but below is what I have before I do a nat any inside inbound command global (outside) 1 interfaceglobal (inside) 2 interfacenat (inside) 0 access-list inside_nat0_outboundnat (inside) 1 0.0.0.0 0.0.0.0.
When i web browse to the ASA i get the certificate warning page, when i click to continue to the website it loads the normal "this page cannot be displayed"..
I use to have the ASDM software on my computer to manage the device however its been uninstalled now.. can this be downloaded somewhere? i have already tried upgrading the asdm and asa files on the asa?
typing 192.168.0.1 just times out when there no internet connection problem. I can go into my modem settings through. I don't know when this problem started as I hadn't needed to log into my router in over a year. I tried resetting it and still can not go to the log in page. I noticed a few months ago my NAT type went from open to strict on my xbox live but didn't really care at the time
i have a SMC8014WG-SI Router and its gateway is 192.168.0.1 but when i type it in the router doesn't appear at all , just says that the page cannot be found. i like portforwarding and need to be able to login the router to do so.
Some emails that come into the INBOX are not complete and do not have graphics.On opening some emails in my Inbox, it tells me that THE WEB PAGE CANNOT BE FOUND.Some emails are going straight into the DELETED ITEMS BOX and are not SPAM. Some of them can be opened by clicking on to the LINK but others will not open.I have also had (Your email programme does not support HTML), which I do not understand.I telephoned my server and was advised to contact a PC Technician as I may have a VIRUS.
I want to load balance between two webservers using ACE10 working in bridging mode, but when putting the VIP in the url i'm getting page not found, tried many configurations but didn't work, here is the latest one
logging enable logging buffered 7 access-list ALL line 8 extended permit ip any any
When a friend sends me an email with a link to click on when I click on ther link a blank page pops up with the words "404 not found". Why does this happen and is it a big problem. This problem just started to happen a few weeks ago. I never had a problem whenever a friend sent me an email with a link to click on.
I've had two 932Ls for a year and they work fine. Both installed trouble-free and have been used with motion-detection wirelessly. I often go straight to their local IPs in my browser to make any changes to settings etc (avoiding myDlink). I just bought two 930Ls (don't need/want the IR-function on these) and tried to install them. Process went seemingly smooth but once the camera was installed and wireless, problems started to crop up. As I saved settings in the web interface, I would get 404 "page not found" errors. Refreshing would make it work again...sometimes. More often than not, I cannot reach it through the web interface and the camera reads "disconnected" in D-ViewCam. It usually works on myDlink though. i've checked all the network and wireless settings and they are identical to my 932Ls. The connection is just unstable for some reason. The problems are apparent in the web interface and D-ViewCam which also means I can't trust the motion detection and emailing function. It is also NOT visible in my Windows 7 network environment, whereas the two 932Ls (and my entire Sonos network) do show up there.The 930L is running firmware 1.04 and the 932Ls are running 1.02. I know there is a 1.06 available but before I try that I'd like to get your views on this problem. Could it be a faulty unit? I don't want to fight through this problems - if it persists I'd rather return the cameras and buy two more expensive 932Ls and just turn off the IR in the interface. Or is this a known issue with the 1.04 firmware?
Even writing this right now, the camera suddenly popped back up on the web interface inexplicably, without me doing anything. and back up on D-View Main Console.
I have seen a few of these 305005 threads and they're usually related to NAT and resolved quickly. I have poked around a little, but can't seem to get it right. I'm using the Real-Time Log Viewer in my ASA 5510 and see lots of these 305005 errors between VPN clients and a server. Packet Tracer says it's being stopped at the PAT_POOL dynamic traslation to pool 1. I'm not solidly sure of what to change. [code]
i wounder why i'm getting such log message whenever i'm trying to reach my remote site: No translation group found for tcp src outside XXXX dst dmz ZZZZ, i have a Cisco PIX515E firewall and that message is captured there, the traffic is going through a VPN tunnel (the VPN are up on both ends)
i've checked in on one of our 5510's and also on a 5505 but i don't seem to find the license duration (i.e "perpetual).is this normal or just an IOS or platform specific? [code] Cisco Adaptive Security Appliance Software Version 8.2(5)
Error message 305005: No translation group found for udp src c_dmz:10.0.176.120/51910 dst inside:195.244.192.16/53 305005: No translation group found for udp src c_dmz:10.0.176.120/51910 dst inside:195.244.192.166/53
[Code]....
I thought it needed a nat (c_dmz) command but I got the following error message
PIX(config)# nat (c_dmz) 0 0.0.0.0 0.0.0.0 0 0 nat 0 0.0.0.0 will be identity translated for outbound WARNING: Binding inside nat statement to outermost interface. WARNING: Keyword "outside" is probably missing.
I am configuring Clientless SSL VPN on ASA5505 with 8.2(2)17. After the login, default page should be "Home", but if activating "Anyconnect". it always goes to Anyconnect as a first page. If disabling "Anyconnect" using SSL VPN Customization Editor --> Portal --> Application, it always goes to the other one. Never get "Home" as a first page, can I set the first page manually?
I have a Cisco ASA 5505 V10. I've upgraded it to use asa825-K8 & asdm-649.103. Before the upgrade I was able to get to the ASDM via https://192.168.1.1. However after the upgrade I just get a page cannot be displayed. I have rebooted the ASA.
I have an RV042 which is being used as an interface to an ISP.The WAN address (public) is obtained via PPPoE.The LAN address (also public) is entered manually from an assigned block of public addresses. This is the internet gateway for other publicly-addresses devices like firewalls, VPN devices, etc.
I have an RV042 to play with as will as one in production that I can access.Because the accesses are both through public addresses, I want to use https to access the device. I've generated a number of questions as I'm not sure the behavior is understandable to me and maybe the behavior isn't even consistent.
- If the firewall is Disabled, the https setting is still available. So, presumably https will work with the firewall enabled or disabled? Is that right?
- I take it that the Remote Management setting and port number are associated with the WAN port. For example, can one set Remote Management ON with port 443 and still access via the LAN on port 80? on port 443?
- If Remote Mangement is OFF then I presume that one cannot access the device through the WAN. Yet, that seems to not be the case. I wonder if the public addresses on this device affect this?
Well, I guess we might forget about the Port number and just ponder the following - Sort of a truth table:
Remote OFF http...........WAN access: NO LAN access: YES https..........WAN access: NO LAN access: YES Remote ON http...........WAN access: YES LAN access: YES https..........WAN access: YES LAN access: YES
This is what it would seem to me to be but it doesn't seem to work that way.
I have some problem with the ASA 5510 ver 7.0(6). My manager wants to keep this as backup. tried lots of things but still users not able to access internet nor can i ping anywhere.For example when i ping 4.2.2.2 i dont get any reply.The runing config is below for ur ref :
I need to create a firewalled segment that not only separates hosts from general population, but also from each other. The solitary confinement of firewalled segments.I know that I could create a bunch of sub-interfaces, one for each host or group that needs to be isolated, but I'd really rather not have to do that if possible. 1) It could become a management nightmare between ACLs and sub-interfaces and 2) it's a waste of IP addresses.s there any way that I can create a bunch of separate VLANs behind the firewall and have them all terminate at the firewall, using a single firewall IP address for the gateway?
I have a ASA 5510 firewall with CSC module and Security Plus license for CSC module.Will you tell me how to configure my firewall to send emails to particular mail ID when someone login into the firewall or any virus attacks from outside.
We were having a discussion of ios firewall vs. asa for smaller clients(less than 50). On using ios firewall(zbf or cbac)and an asa 5505/5510. One of the arguments brought up on using ios firewall on the router is that a router will do an ip sla failover. I have configured a number of isr's for this and i know it works good.
I would just like to to open UDP port 123 in the ASA 5510 Firewall so that our Primary Domain Controller could use this port to sync time with an external time source. We have already added an access rule for this port under the firewall configuration in ASDM 6.4 and this port was also allowed in the inbound and outbound rule of the PDC's Firewall but it seems that it was still blocked.
I am quite new to firewall, in my company one asa 5510 firewall is there.I configured inside, outside, dns, dhcp and nating.I need to config bandwidth limit (1Mbps) for inside port and I restruct like facebook, youtube and pornsites..And I heard that some subscription is required, really is it required?
I have an ASA 5510 in a live environment. Up til a short while ago I could access this via the ASDM and ssh. However I can no longer connect to it via eithier. When I access It via SSH I get a disclaimer saying the following
*** You have entered a restricted zone! Authorized access only!!! Disconnect immediately if you are not authorized user! ***
It then cuts me off.
When I try to access the ASDM I get the following
The firewall is running all its services without a problem and I can ping the device without any issues. Also none of the config (to my knpowledge has been changed). I set up a console session and http server enable is still there with
I have just configured identity firewall on our ASA 5510.I have 3 nodes that authenticates against Active Directory, using the Windows Server 2008 R2 builtin Network Policy Server: A laptop, a stationary PC, and a Android Phone. All 3 nodes are authenticated using the same user/password.
Now, in ASDM -> Monitoring -> Properties -> Identity -> Users, I can see two of the nodes with my user name attached to it, namely the laptop and the stationary PC.But not the Android phone.
Then it dawned on me. To set up the ADAgent properly, you have to apply 2 group policy entries. Unfortunately, those 2 entries are applied to the Computer Configuraton part of the Group Policy.This means that your COMPUTER has to be a member of your domain for USER IDENTITY to work.So my Android phone and other nodes not a member of the AD Machine Store will never be detected by identity rules, and can roam the network free.
I'm trying to install an ASA 5510 transparent firewall using ASA version 8.4(3)9 but I don't understand how traffic will ever pass through my firewall if both interfaces are on the same sub net(V lan) as the host and it's default gateway? The reason I'm doing this is were installing UAG (or Direct Access) and the UAG appliance need to have public IP's but still be behind a firewall (see attached diagram).
Looking at the documentation (which all seems to be for 5505's running 8.2) it almost seems like i need to have the transparent firewall 'in-line' to the ISP router?, but this router services another IP address range on another v lan for other (routed) firewalls (not shown on diagram) so putting it 'in-line' is not possible. Surely this can't be the case can it? If not how is it supposed to be cabled up and configured so packets go through the firewall?
I currenty have 2 cisco 5510 firewalls one of the firewals is completly dead but contains a Cisco ASA SSM-10 can i remove this card and just place it into a working unit, will i have any problems doing so.
I am unable to see 4th interface on my firewall i.e fastether0/3 on my firewall ASA 5510.
Below is the output. ciscoasa# sh int ip br Interface IP-Address OK? Method Status Protocol Ethernet0/0 x.x.x.x YES CONFIG up up Ethernet0/1 x.x.x.x YES CONFIG up up Ethernet0/2 unassigned YES unset administratively down down Internal-Control0/0 127.0.1.1 YES unset up up Internal-Data0/0 unassigned YES unset up up Management0/0 192.168.1.1 YES CONFIG up up
This is my first time to use the Cisco ASA 5500 family. I have a request from a user to create an access rule, to allow all LAN traffic to Destination IP address 165.241.29.17, 165.241.31.254 with Destination TCP port 5060,5061,5070 and UDP port 50000-52399.
We have setup new ip camera system and as per our vendor to access the camera from outside we need to open,TCP ports and in firewall and forward to our camera server.
Let say our public ip address is 207.114.111.22 and our local ip address for the camera is 11.11.1.30. We have cisco asa 5510.
