Cisco Firewall :: ASA5520 - Can't View ACL Count Details Using ASDM

Feb 9, 2012

We are running a ASA5520 with system image of "disk0:/asa843-k8.bin".  I'm also running ASDM ver: 6.4(7)So my question is while I'm in the ASDM on the configuration of the firewall, I'm looking at the Access Rules.  When I do a show log on any of the rules that have hit counts on them, it opens up a Real-Time Log Viewer but I don't see any information.  It's not showing anything, nothing appears, it just sit's there like it's waiting but no data is coming.  Even though if I go back out to all the rules, I can see the hit count incrementing.  The same thing happens no matter which rule I pick with hit counts on them.

View 1 Replies


ADVERTISEMENT

Cisco Firewall :: ASA5520 Can't Connect With ASDM

Sep 23, 2012

I have a problem with ASDM connection to ASA 5520 cluster. When I'm trying to connect the ASDM shows: "Contacting the device. Please wait..." and nothing happen. The http server is enabled with default port. Both cluster members after restart.
 
Cisco Adaptive Security Appliance Software Version 8.4(1) Device Manager Version 6.4(1)

View 7 Replies View Related

Cisco Firewall :: Unable To View PIX515e Via ASDM?

May 20, 2012

I am trying to veiw my PIX515e via the ASDM, but I am unable to...Can you review my config and make sure I have everything setup the way it is supposed to?
 
PIX Version 8.0(4)32
!
hostname pixfirewall

[Code].....

View 3 Replies View Related

Cisco Firewall :: ASA5520 - Access-Rule ASDM Ver 6.2(1) Vs 5.2(3)

Apr 17, 2011

I am creating access rule on a ASA5520 running ASA 8.2 (1) and ASDM 6.2(1) and found that the GUI has less option then when creating access rule on a ASA5505 running ASA 7.2 (3) and ASDM 5.2(3) (see attachment). Is there an option that enables me to get the same configuration options on the ASA5520 running ASA 8.2 (1) and ASDM 6.2(1) as I have on the ASA5505 running ASA 7.2 (3) and ASDM 5.2(3).

View 4 Replies View Related

Cisco Firewall :: Delete ASDM Image From ASA5520 For Enough Space?

Feb 16, 2013

we have an ASA5520 need upgrade new anyconnect client, but the new version is too big, so it's no enough space. I want to delete the ASDM image to free the more space. My question is when I delete the ASDM image,if I could manage the ASA from web browser?

View 5 Replies View Related

Cisco Firewall :: ASA5520 Monitoring Connection / Disconnected In ASDM

Jan 25, 2011

I have a 5520 ASA running 8.2(1) and ASDM 6.2(1). The ASA has been running for 223 days without issue. Today it stopped showing real time status on the Device Dashboard from within ASDM. All of the graphs state "Lost connection to Firewall."I try to manually reconnect but it will not. I have tried on a couple different computers and cannot get the monitoring connection to work.It is a very busy firewall and I will have to schedule for a restart (which I was thinking of doing) even though I do not see a memory issue as per snip below. I don't want to restart unless it is the best option.

View 13 Replies View Related

Cisco Firewall :: Unable To Access ASA5520 ASDM Through Web Browser

Jun 1, 2011

I recently had a vendor configure our 2 firewalls (ASA5520). We are replacing a active-failover PIX525 firewall in 2 locations. After the vendor configured the new ASA5520's, I was unable to access the ASDM. The configurations are a basically modified versions of the config on the PIX525. I did find that they did not set the ASDM image path. [code]
 
I have tried from my browser as well as downloading and installing th ASDM on my computer.

View 2 Replies View Related

Cisco Firewall :: ASA5520 - ASDM Access After MGMT IP Change

Oct 9, 2012

I have an ASA 5520 new. I am trying to migrate from a PIX 515E. I can connect via the CLI and ASDM on the management port (IP 192.168.1.1 the default) What I am having an issue with though is when I change the management port to 10.0.1.1 via the CLI or ASDM I can no longer use ASDM. I issue the show IP command in the CLI and I see that the IP has indeed changed but I still can not get into it. I must be missing something really simple, but this is driving me insane. I want to change the IP because I need the a different interface to be 192.168.1.1.

View 2 Replies View Related

Cisco Firewall :: The Number Of ASDM Sessions Has Exceeded 5 On ASA5520 Running

Feb 22, 2011

I have an ASA 5520 running version 8.2(1) and I am having an issue with ASDM sessions.I can SSH into the ASA and have tried to clear the sessions but they do not clear as per below.
 
largoGW# sh asdm session0 dguselnx1 dguselnx2 dguselnx3 dguselnx4 dguselnxlargoGW# confi tlargoGW(config)# asdm disconnect 0largoGW(config)# asdm disconnect 1 largoGW(config)# asdm disconnect 2largoGW(config)# asdm disconnect 3largoGW(config)# asdm disconnect 4largoGW(config)# exitlargoGW# sh asdm session0 dguselnx1 dguselnx2 dguselnx3 dguselnx4 dguselnxlargoGW#

An interesting point: the host dguselnx is my linux based computer that I am using to SSH to the ASA. I do not connect via ASDM from this device so it is strange that the hostid for the asdm sessions is showing as my linux host and not my Windows laptop (that I am trying to connect via ASDM from).

View 5 Replies View Related

Cisco Firewall :: ASA 5500 / ASDM - View Historical Metrics In Graph Form For Traffic Overview

Sep 25, 2011

Running an ASA 5500, and using ASDM to connect. I need to view the historical metrics in graph form for traffic overview, that is shown on the firewall dashboard. I have enabled historical data, but all I see the 5 minute intervals.

View 4 Replies View Related

Cisco Security :: ASDM 6.3 View Changes Before Applying?

Jan 27, 2011

Is there a way to view changes made in ASDM before hitting apply button?

View 2 Replies View Related

Cisco Firewall :: ASA 5520 With 8.04 And ASDM 6.1(5) Global Not Showing In ASDM

Apr 26, 2011

nat global entry not showing up in ASDM but it does via CLI see blow, it's a policy NAT.
 
nat (inside) 5 access-list inside_nat_outbound_4
 
global (outside) 5 ************-OUTSIDE netmask 255.0.0.0
  
Global 5 doesnt show in ASDM 6.1 (5) the globals only go up to 3

View 1 Replies View Related

Cisco Firewall :: ASA5520 To ASA5520 Via L2L Tunnel

May 31, 2011

Our firewall expert has gone off on long term illness leave and I am trying to pick up the pieces :-(
 
We have an ASA 5520 (local office) talking to another ASA (remote office) via a VPN Tunnel.
 
My 1st problem is that I cannot ping from my inside network (local) to the outside interface of my remote ASA.
 
My 2nd is that I have debug enabled on my rules but am not logging anything.

View 1 Replies View Related

Cisco Firewall :: ACL Hit Count Not Real In Asa 8.2

Mar 6, 2011

ASA v 8.2What does the ACL hit count count ? I always thought that the acl hitcount counted the numbers of packets hitting that line in the ACL, however that is not the case. if I setup a icmp permit rule then that will only increment 1 even if I send 4 packets that hits the line. udp and tcp seems to do the same. is there some way I can make the ACL actually count the packets that hits ? where can I learn more about this ?

View 4 Replies View Related

Cisco Infrastructure :: Where To Check License Details - ASR 1000 Firewall

Mar 13, 2011

I am looking for for details meaning of license because I cannot found the details install.  The license call
 
FLASR1-FW-RTU(=)
 
that is used to enable the firewall function in ASR 1000 series.  But I don't clear about what feature inside, it is because it only show the "firewall" from website.  Is that same as IOS firewall?

View 1 Replies View Related

Cisco Firewall :: ASA8.4 VPN - Hit Count Is Zero On Rules

Nov 7, 2012

I have several working VPNs between ASAs 8.4 and 8.3The way this was set up is with cryptomaps that match whole subnets and ACL on the outside interface to permit from/to the RFC 1918 addresses.I notice that the hit count is zero on these rules and so I wonder if they are actually necessary or doing anything.If they are not where can an acl be applied to restrict the VPN traffic? Outbound on the inside interface?

View 1 Replies View Related

Cisco Firewall :: Active Session Count Of ASA 5540 In HA?

Apr 15, 2012

We have configured our ASA5540 in active-standby failover.We are observing that current active session count is twice of session count before configuring HA. Earlier average active session was 50000 and now after HA it is around 100000. Failover configuration of both firewall are as follows
 
failover
failover lan unit primary
failover lan interface FOLan GigabitEthernet1/0
failover polltime unit 15 holdtime 45
failover replication http
failover link StateLink GigabitEthernet1/1
failover interface ip FOLan 10.3.3.1 255.255.255.0 standby 10.3.3.2

[code]....

View 3 Replies View Related

Cisco Firewall :: ASA 5510 High Drop Count On Management Interface

Sep 4, 2012

I have a 5510 FW in multi-context mode that is showing a high drop count on the Management interface in the Admin context.

View 1 Replies View Related

Cisco Firewall :: ASA 5505 - Increase Inside Hosts License Count?

Feb 14, 2012

At the end of the day I simply need to upgrade the license on my ASA 5505 v7.2.4 (upgrade will come later as part of a larger project) to allow for >10 Inside Hosts. From what I've read there seems to be a 50 license upgrade out there. Can this be purchased directly? From whom? Will it only affect the Inside Hosts number and not affect any other licenses, configurations, etc. Just being overly cautious since this is way outside of my normal realm. Below is the current activation-key information....
 
Result of the command: "show activation-key"
  
Serial Number:  xxxxxxxxxxxxxx
Running Activation Key: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
  
Licensed features for this platform:
Maximum Physical Interfaces : 8        
VLANs                       : 3, DMZ Restricted
Inside Hosts                : 10       
Failover                    : Disabled
VPN-DES                     : Enabled  
VPN-3DES-AES                : Enabled  
VPN Peers                   : 10       
WebVPN Peers                : 2        
Dual ISPs                   : Disabled 
VLAN Trunk Ports            : 0        
  
This platform has a Base license. 
 
The flash activation key is the SAME as the running key.

View 2 Replies View Related

Cisco :: 5500 - Count Bytes For Some Interesting Traffic Crossing Firewall In It?

Mar 20, 2013

I need to count the bytes for some interesting traffic crossing the firewall in ASA 5500. Packet Capture is so far as I need, cause I only need the number of bytes during a long time for about 3 months (source host - destination host)
 
capture capin type raw-data access-list cap buffer 33554432 interface inside circular-buffer [Capturing - 33553570 bytes]
 
I need to get only the exactly amount of "33553570 bytes" The pcap file is not needed

View 6 Replies View Related

Cisco Firewall :: ASA5512-X - ASDM In Firewall Transparent Mode

Dec 3, 2012

I would like to configure an ASA5512-X in firewall transparent mode, but I am having trouble getting ASDM to lauch when I do.
 
I have created a BVI interface with an IP address, and I hve enabled the mangement interface, but ASDM does not lauch when I enter the IP adress of the BVI I created.
 
Apprently you need to use the bridge-group command to assign an interfce to a bridge group. When I enter this command at the (config-if) prompt for Management 0/0, this command is not recognized.
 
What are the general steps for configuring the management interface to be able to launch ASDM in transparent mode?

View 1 Replies View Related

Cisco Firewall :: Open A Port In ASA 5510 Firewall Using ASDM?

Oct 20, 2012

I would just like to to open UDP port 123 in the ASA 5510 Firewall so that our Primary Domain Controller could use this port to sync time with an external time source. We have already added an access rule for this port under the firewall configuration in ASDM 6.4 and this port was also allowed in the inbound and outbound rule of the PDC's Firewall but it seems that it was still blocked.

View 23 Replies View Related

Cisco Firewall :: 5510 - Cannot Connect To ASA With ASDM Or SSH - Firewall Running Ok

May 21, 2013

I have an ASA 5510 in a live environment. Up til a short while ago I could access this via the ASDM and ssh. However I can no longer connect to it via eithier. When I access It via SSH I get a disclaimer saying the following
 
*** You have entered a restricted zone! Authorized access only!!! Disconnect immediately if you are not authorized user! ***
 
It then cuts me off.
  
When I try to access the ASDM I get the following
 
The firewall is running all its services without a problem and I can ping the device without any issues. Also none of the config (to my knpowledge has been changed). I set up a console session and http server enable is still there with
 
http 192.168.200.0 255.255.255.0 inside

View 4 Replies View Related

Cisco Firewall :: 5515-X Communicate Firewall Through ASDM-IDM

Aug 29, 2012

I have a ASA 5515-X-IPS firewall and I want to communicate firewall through ASDM-IDM. Already done the below procedure;

•1. Connect cable to Management port.
•2. Open browser and type https://192.168.1.1/asdmin and download the ASDM-IDM Launcher v1.5(55) and install my laptop(OS: windows 7)
•3. Connect asdm-idm launcher we put IP Address: 192.168.1.1 and username, password enter.

Just whenever we login the wizard then the message shown “ Unable to connect the asdm manager”For your kind information we already setup jre6u7 java software.

View 1 Replies View Related

Cisco Firewall :: ASA5520 Bypass All Network Through Firewall

Dec 22, 2011

With regarding to the firewall ASA5520, i'm using it in my network, all the confiuration are properly configured and working but with the use of proxy address in internet explorer(e.:206.53.155.129/3128) all the blocked contents as easily accessible simply it bypass all the network through firewall.so will u guide me to block the proxy servers.

View 1 Replies View Related

Cisco Firewall :: Keep ASA5520 Firewall In Sync

Aug 22, 2011

I have two asa 5520 firewalls. one at my primary data center connected to our production Internet feed, and one at my fail over data center connected to a backup internet feed. I was wondering if there was an easy way to keep the firewall rules in sync between the two firewalls. We have failover with our isp that will move our public facing address block from our primary site to our dr site in the event of a disaster so the ip addresses will not change if we were to have to fail over to the DR site. currently i just have to do any changes that i make on the fail over server but would like a way to at least simi-automat this if not fully automat this so that i can eliminate the possibility of human error of a change happening at primary but never getting don at DR.

View 1 Replies View Related

D-Link D-ViewCam :: 3.3 / Setup 4 Cameras To View With Remote Live View?

Apr 12, 2013

I am trying to setup 4 cameras to view with remote live view. I set up my server with IP addresses of 192.168.1.80   ....   85. The screen has only the option for 1  video channel. I have seen on-line screen shots that have options for channel 1 through 8. I want to assign each camera to a different channel so I will be able to use remote live view to show all 4 cameras  at the same time. I can only show one at a time. Do I need a different version than 3.3 or some obscure windows 7 setting?

View 5 Replies View Related

Cisco Firewall :: 401 Forbidden On ASDM

Mar 21, 2010

I can get to the untrusted certificate on https....coming from my address 192.168.133.205..but i get denied am i being denied by access list?..I dont see how since intital SSL begins..
 
these are the log from the ASA---10.11.24.11 is the ip of one of the contexts
 
interface GigabitEthernet0/1.124 vlan 124 nameif Inside security-level 100 ip address 10.11.24.11 255.255.255.0
 
http server enablehttp 0.0.0.0 0.0.0.0 managementhttp 0.0.0.0 0.0.0.0 Inside 
 
Mar 22 2010 16:05:34: %ASA-6-725001: Starting SSL handshake with client Inside:192.168.133.205/24368 for TLSv1 session.Mar 22 2010 16:05:34: %ASA-6-725003: SSL client Inside:192.168.133.205/24368 request to resume previous session.Mar 22

[Code]....

View 6 Replies View Related

Cisco Firewall :: ACL Not Showing In ASDM 7.1 (ASA 9.0)

Apr 30, 2013

I've configured a couple of ACL rules via CLI in my ASA. When i checked in the ASDM, it only shows the basic rules that was configured by default and did not show the rules that i've created.

View 6 Replies View Related

Cisco Firewall :: ASDM Not Working With ASA 8.4

Jan 14, 2013

I have recently upgraded ASA to 8.4 and found that ASDM is not working on it. I tried the latest ASDM version 7.1 still no luck. When I try to access ASA using IE...it just shows " Page can not be displayed "
 
Following is the config which I have
 
http server enable
http 0.0.0.0 0.0.0.0 inside
http 10.52.193.218 255.255.255.255 inside
asdm image disk0:/asdm-711-52.bin
asdm location 0.0.0.0 0.0.0.0 inside
asdm history enable
 
Is there anything else required in ASA 8.4 for ASDM to work? When I telnet to ASA interface with 443 port it works

View 8 Replies View Related

Cisco Firewall :: 5505 Asdm From Outside

Sep 22, 2011

im working on a small project on a asa 5505 and beacuse i do most of the work from the outsidei want to open up asdm without vpn.
 
i have it working on another asa and the only difference is the rom version.the one not working is 8.0(5) - 6.2(3) and the one working is 8.0(4) - 6.1(5) did they do some changes?

View 6 Replies View Related

Cisco Firewall :: ASDM Cannot Be Loaded ASA 8.2

Feb 28, 2012

ASDM cannot be loaded. Click OK to exit ASDM. Server returned HTTP response code: 503 for URL...

I'm attempting to access the ASDM externally (where x.x.x.x is the external IP). I was able to access 3 days ago just fine. So far, I've found suggest a reboot.

ASA Version 8.2(1)  - I think the ASDM version is 6.2

View 11 Replies View Related

Cisco Firewall :: ASA OS 8.4(6) And ASDM 7.1.3 Running?

May 26, 2013

I was going through the release notes on cisco website of ASA 8.4.6 and ASDM 7.1.3 but I just can not find a definitely answer: if ASDM 7.1.3 can run with 8.4.6?

View 2 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved