Cisco Firewall :: ASA 5520 - How To See Write Log
Aug 5, 2011I want to see log for write on ASA5520. who & when write lastly and who write before. How to see this log. In show vershon i see last modified date, but not log.
View 5 Replies
ADVERTISEMENT
Cisco Firewall :: ASA 5520 8.0(5) Write Standby Causes Standby Interface Down / Up
Sep 22, 2011last night I started upgrading our ASA5520 active/standby cluster. Because of lack of memory, I stopped the upgrade process and will continue when the memory modules have arrived... Currently I'm running 8.0(5) on both nodes (Version: Ours 8.0(5), Mate 8.0(5))Whenever I use the "write standby" command on the active ASA, the passive ASA seems to drop it links for a short while. [code]
View 4 Replies View RelatedCisco Firewall :: 5505 Changes Are Not Saved After Write Mem
Jun 28, 2011When I make changes to the config of my ASA 5505 and write mem (or use the ASDM to save running config to flash) the changes are not being saved.
Is this going to be a problem with the Flash Memory on the device?I have successfully saved config on this device in the past, which is why I am thinking it might be a problem with the flash memory.
Cisco Firewall :: ASA 5510 - Unable To Write To Flash
May 9, 2012My client has had to replace their ASA 5510. Upon importing the image to the brand new ASA they are unable to write to the flash.
They have run fcsk disk0: to no avail. show file system show 0 and 0 for Flash size and Free space on disk0.
Is there anything that can be done, short of formating flash and trying to reinstall the image? I have asked them to reload the ASA but they are reluctant to do so as they don't want the site to lose connectivity.
Cisco Firewall :: Secondary ASA5525 Interface Flap When Write Standby
May 23, 2013i never see this before, but on newly purchased just configured firewall.when i do wrtie standby.All interfaces on standby unit flaps.is it some IOS bug? my firewalls are [code] what could be the reason? FYI i am using LAN base failover and not doing any statful fail-over.
View 3 Replies View RelatedCisco Firewall :: PIX 515e - Cannot Write / Erase Or Configure Factory Default
Jul 3, 2011I have a cisco PIX-515e which i have connected to a emulator through the console port, and im having trouble erasing data from it.
I can get into 'pixfirewall' mode and 'monitor' mode but thats as far as i get. i have tried 'write erase' and 'configure factory-default' in both modes to no success.
Cisco Firewall :: Different Between ASA-5520-K9 And ASA-5520-K8
Nov 2, 2012We were using ASA-5520-K9 with ASA-SSM-AIP-20-K9 but recently found some hardware problem in our running ASA. Now cisco want to replace with ASA-5520-K8.
View 1 Replies View RelatedCisco Firewall :: Upgrade From 5505 To 5520 On Network - ASA Firewall Throughput
Feb 27, 2013I'd like to see some REAL LIFE comparisons of ASA firewall throughput (a bit like this one for ISR G2 Routers - [URL].
The reason I ask is that I recently upgraded a firewall from an ASA5505 to an ASA5520 on a small network where the only outside connectivity was a single 10meg Internet circuit with an IPSEC VPN (not landed on the firewall but on a router) to another site.
When I swapped out the firewall the users noticed a big improvement. The firewall is not doing anything out of the ordinary - no IPS or VPN, just standard state full inspection.
Cisco Firewall :: ASA 5520 - Routed Management Interface On Transparent Firewall?
May 5, 2013I have an asa 5520. How would I configure my dedicated management interface to be able to route off subnet while the firewall is in transparent mode?
View 1 Replies View RelatedCisco Firewall :: 5520 Identity Based Firewall Doesn't Work Using Citric Published
Jul 26, 2012We are using the newest release of AD Agent (1.0.0.32.1, built 598). The ASA Firewalls 5520 are having the software release 8.4(3)8 installed.When somebody tries to connect thru the Identity based firewalls from a citrix published desktop environment (PDI) the connection is not possible. Checking the ip-of-user mapping on the firewalls (show user-identity ip-of-user USERNAME) mostly doesn't show the mapping of the USERNAME and the PDI the user is logged in. The user-of-ip mapping of the PDIs IP-address shows mostly other users, which then are used to authenticate the acces thru the firewalls.
What is interesting, that on the AD Agent using "adacfg.exe cache list | find /i "USERNAME"" i can't see the PDIs IP-address neither because it is mapped to another user.Is Citrix Published Desktop environment supported to connect thru Identity based Firewalls? How AD Agent, Domain Controllers and Firewalls are working together? On the firewalls with "show user-identity ad-agent we see, the following:
-Authentication Port: udp/1645
-Accounting Port: udp/1646
-ASA Listening Port: udp/3799
Why Cisco does use 1645 and 1646 and not 1812 and 1813?The Listening Port is used for what purpose? we tried the AD Agent modes full- download and on-demand with the same effect.
Cisco Firewall :: Launch LAND Attack Against Firewall ASA 5520
Apr 15, 2013I try to launch a LAND Attack against my firewall ASA 5520. Everything will work fine. But why, I think it should not work. I use a little tool where I can user a spoofed address, with a cluster shell and attack the firewall interface with the source of 127.0.0.1 ore the ip address of the interface as the source and destination. Then I get a cpu load of 89% with only two host. With IP tables I can use kernel processes to prevent this. But I don´t find anything for ASA.
View 1 Replies View RelatedCisco Firewall :: 5520 Single Firewall With 2 Core Switches
Jan 4, 2012Two different WAN links get connected to the firewall via two routers.(Different ip subnets).I need to get this two wan streams seperatly to the core switches.Core switches sits.Active/Stanby senario. If the Active core goes down Stndby Core will have take over the traffic. My design is correct ,if not what do i need to change. ASA is 5520.
View 8 Replies View RelatedCisco Firewall :: ASA 5520 - NTP Server For Firewall Clock Setting
May 22, 2013I have ASA 5520 installed. I want to use ntp server for firewall clock setting. I found one open-access ntp server (stratum 2) in Los Angeles:
[URL] 209.151.225.100
Can I use the following command to set ntp server?
ntp server 209.151.225.100 source outside.
Cisco Firewall :: Make Communication Between 2 Vlans On Firewall 5520 ASA 8.2
Jan 1, 2012communication between 2 vlans.i have 2 vlans
Vlan 100
ip add 1.1.1.1
!
!
!
Vlan 200
ip add 2.2.2.2
i want to make communication between 2 vlans on firewall 5520 ASA 8.2.
Cisco Firewall :: ASA 5520 - Corporate Firewall Crash
Feb 27, 2011I have a serious problem with my corporate firewall, witch is an ASA 5520, fv 8.3, with 8 +1 interfaces. It suddenly started to crash every 10/20 minutes and rebooting alone.
First of all I checked system resources witch are in a very low usage state. I also checked interfaces errors, but nothing strange come out o from error counters analysis. I tried disabling logging and all the service policy rules configured, but nothing changed.
Nothing changed and firewall continue restarting by itself.
Last logs I received before crash were:
%ASA-4-711004: Task ran for 35 m sec, Process = Dispatch Unit, PC = 84a619e, Call stack =
%ASA-4-711004: Task ran for 35 m sec, Process = Dispatch Unit, PC = 84a619e, Call stack = 0x084A619E 0x084A6512 0x084A70E1 0x084A7987 0x084A7AAA 0x08558B9B 0x08558E8A 0x083D3518 0x083CA145 0x080659D1 0x089196D9 0x08919790 0x089FF711 0x08A27468
Here the sh crash info command on module 0, after last reboot:
[Code] ......
Cisco Firewall :: 5520 Firewall Management Port
Nov 29, 2011we are having a firewall asa 5520 .we have connected the management port and inside port to internal network and dmz port to dmz network.now we need to configure tacacs and other management tool on dmz devices through management port. The problem is the management devices tacacs and other are placed in internal network.
View 2 Replies View RelatedCisco Firewall :: ASA 5520 - NAT And Firewall Access Control
Oct 4, 2012I have an ASA 5520 in my company which does all our NAT and Firewall access control. Currently there is a rule in place to allow an incoming connection on port 2222 from a specific ip address to allow access to a web app our developers created. This is a test before the web app is released live. Now the web app can communicate with the specific address and port but the incoming connection on port 2222 isn't getting through. Everything looks great in the firewall but how can I log any hits this ACL takes to identify any potential problems?
View 2 Replies View RelatedCisco Firewall :: ASA 5520 - VPN Traffic Is Getting Dropped Through Firewall
Apr 8, 2011Our Local Network is behind the CISCO ASA Firewall.Whenever we are accessing to Client VPN server,it is getting connected but after few Minutes (May be 5/10/30 Min),the sessions are terminating. The same traffic through PIX is no issue , only with ASA Firewall. See the following Error and request you give the possible root cause for this.
2011-04-09 16:15:09 Local4.Info 172.16.1.68 %ASA-6-302016: Tear down UDP connection 87447908 for OUTSIDE:68.22.26.66/4500 to inside:172.16.9.10/4410 duration 0:27:49 bytes 18653
Cisco Firewall :: 5520 - Firewall Behind Two GLBP Routers
May 29, 2012I have problem in the configuration of Cisco ASA 5520, IOS version 8.4. The connection is as follows: LAN network--> Firewall --> Routers with GLBP with virtual ip address. the clients can not ping the virtual interface of the GLBP group, but I can ping it from the firewall, and I can ping the clients from the firewall, I checked the packet tracer it gives :
Phase: 7
Type: NAT
Subtype:
Result: DROP
Config:
nat (inside10,outside) source dynamic LAN interface
Additional Information:(code)
How To Setup 2 PC To Write To The Same File
May 23, 2012How to setup 2 PC to write to the same file simultaneous without loosingdata or messing up the data from any two pc in a peer to peer network?Let say a file reside on PC1, both user open a file and edit the same timeand save the data and the file contain both data from both computerwithout messing up the content from either user
View 2 Replies View RelatedCisco Firewall :: Does ASA 5520 Have Layer 7 Firewall
Oct 24, 2012Need to know if ASA 5520 does Layer 7 firewall or not?
View 2 Replies View RelatedCisco Firewall :: ASA 5520 (Ver 8.2) - HTTP Behind Firewall
Jan 26, 2012Two days ago, we changed our old 525 with asa 5520 ( ver 8.2 ). Configuration is the same, except the version. It even retains the same global interface and static public ip address as the old device.All worked well during that period.
Yesterday, one of the http applications , not tested other day, was found not to be working. To test, we switched back to the old 525 , however nothing was working when we did that.
Cisco WAN :: ASR1006 Restarts When Write Command
Jan 8, 2011my ASR1006 router with the IOS ver:
Cisco IOS Software, IOS-XE Software (PPC_LINUX_IOSD-ADVENTERPRISE-M), Version 12.2(33)XNE, RELEASE SOFTWARE (fc1)
is restarting again and again when I try to write the configuration.
Write To Nas Via Ethernet Slower Than Via Wifi
Aug 17, 2012I have a Win7 64bit laptop connected to my home network by both 85 mps Netgear Powerline and wifi. On the network are mt BT Homehub router and an Iomega Home Media NAS. when trying to backup photo files (5+ mb) from laptop to NAS I find the write speed become so slow as to be unuseable via Ethernet.
Speeds (Mbps) obtained:
Write Read Connection
8.5 8.9 wifi
0.2 13.8 ethernet & wifi
0.2 14.5 ethernet
I have tried upgrading firmware (currently 2.040) but the NAS seems unwilling to do this. I have also reset the router -- all to no avail.
Cisco :: 7609 SP - Failed To Write To DS1338 RTC Device
Mar 15, 2011Does any know the meaning of this log message in a 7609 router - "SP: FAILED to write to DS1338 RTC device"?
So far as I can tell DS1338 RTC is supposed to be a (linux-related?) clock but I don't see how that's related to the.
Write Batch File To Restart Router?
Feb 1, 2013My computer will sometimes be connected to the router but internet access isn't available.This is easily fixed by resetting the router, but I was thinking that it would be good to just write a batch file to do it when needed.How would a write a batch file that will restart the router based of the result of pinging an internet site/server.
View 2 Replies View RelatedLinksys Cable / DSL :: Wag320N Can Only Read Can't Write
Jul 9, 2011I connected my Western Digital Studio II 2TB external harddrive which is formatted NTFS. I can access the drive and read it. But I can't write it. It says I do not have rights. I tried to get to be the owner of the device but it gave some kind of error.
View 2 Replies View RelatedD-Link DIR-601 :: Write Down SSID / Password And Security Key
Mar 2, 2013I have a new laptop and had a dlink DIR601 installed on an older laptop. I wasn't the one who got it set up originally but they did have me write down my SSID, password and security key. The dlink came with a cd but there is no cd rom on this laptop. I have tried reset, on line download (which only let me do the revisions). I have talked to a few people and they say it's easy!
View 1 Replies View RelatedCisco / Linksys E1200 - Unable To Write Down Key For Wireless Router?
Sep 21, 2011Did not write down the KEY for my wireless router...a CISCO/LINKSYS E1200. My old router had an HTTP address I could type in and access the router and read the security setings.....what http do I type in to read key on this wireless router?
View 11 Replies View RelatedCisco VPN :: 2811 / How To Generate And Write A Clients Certificate On Etoken
Sep 28, 2011I need:
cisco 2811 IOS CA as server
cisco vpn client + etoken (aladdin) as client
certificate enrollment from cisco vpn client and vpn connection with it works at present, but I don't know how to use etoken with it, how to write the client's cert. to a token.i used this doc:Configuring IPSec Between Cisco IOS Routers and Cisco VPN Client Using Entrust Certificates[URL]in chapter "Certificate Enrollment for the Cisco VPN Client", in section 3 there is a screenshot with an example of a certificate enrollment, where the specified name (CN) as vpnclient, but in section 5 "view the certificate ", common name specified as Joe Smith, etc.where this client's data is obtained? it's not clear to me... how to generate and write a client's certificate on etoken, who uses cisco vpn client with it for connect to server?
Cisco Switching/Routing :: 3750 How To Write Access List
Jan 15, 2012i have one Cisco 3750, am using it as Core Switch where i have 6 more access switches are connected deirectly, and we are using VLANs in our network with the IP reange of 172.16.0.0 , now we had a new Internet connection which is dedicated to Exchange Server only.So we have TWO internet connection One for internet access to all users and another one for only Exchange Server.internet connection for the users is termiated at a Cisco 1700 Series Router and Internet for Exchage Server is terminated at a Cisco ASA Firewall.Now the problem is how can i write an access list, which says that all packets from Exchange server should be routed to ASA Firewall , and all other packets shoulde route to Cisco Router.IP address os Exchange server is 172.16.2.1, 172.16.2.2.
View 13 Replies View RelatedCisco Wireless :: 1140 Doesn't Write To Config.txt File
Nov 8, 2012My 1140 doesn't write to the config.txt file. I'm not sure why. I have three of these access points that we changed the firmware to make them autonomous. The other two worked fine.
View 1 Replies View RelatedCisco Switching/Routing :: Can't (write Mem) After Adding 3rd 3750E Switch
Mar 10, 2008After I added the 3rd 3750E to my stack on Sunday I can no longer save my configs with 'copy run start' or 'write mem':
#copy running-config startup-config
Destination filename [startup-config]?
Building configuration...
nv_done: unable to open "flash:/config.text.new"
nv_done: unable to open "flash:/private-config.text.new"
nv_done: unable to open "flash:/multiple-fs.new"[OK]
[code]....
my flash seems to have plenty of space:
57409536 bytes total (24203776 bytes free)