4GE SSM just have only additional ports with Ethernet (RJ-45) or SFP (fiber optic) Can I config 2 ports use default type (RJ45) and config 2 ports use SFP ?
For Example.
G1/0 and G1/1 = Default type
G1/2 and G1/3 = Media-type sfp
G1/0G1/1G1/2G1/3G1/0G1/1G1/2G1/3RJ45RJ45SFPSFP
Just wondering if it’s possible to add a time-range for certain url filter policies on a cisco 1941?
View 1 Replies View RelatedWe are using a service module with 4.1(1) that takes more more time to compile ACL.So we need to wait more time to permit and capture traffic.
View 1 Replies View RelatedI have one 2621 router i want to creat time base access list so that one of my subnet user(10.128.194.0 255.255.255.128) use only internet between 11am to 2pm.
View 15 Replies View RelatedI just bought a WAP321 Wireless AP. I wonder why it cannot sync with our time server automatically. Every time I reboot it, the system time become "Fri Dec 31 1999 12:00:00 UCT". I have to do the sync manually by clicking on the "Save" button under the menu Administration > Time Setting.
View 5 Replies View RelatedI have a Cisco ASA 5505 Firewall. I am using windows VPN. I have configure IPSEC/L2TP Vpn. And now i hv some problem..
1) VPN is connected but I notices that VPN client connection gets in "HANG" mode after couple of minutes.
2) I am getting error when i try to connect my SQL Server (windows 2008) [code]
I currently have a problem where I have to constantly reboot my ASA whenever my cable modem reboots. The ISP (Pen Tele Data) is setup so that my ASA has to obtain its' static IP using dhcp (ip address dhcp setroute) on the outside interface. Now, I also have another location with a cable connection (Comcast) that does NOT experience the same problem. However, the difference is this ISP allows me to assign my static IP directly on my outside interface. What can I do so that I don't have to reboot my first ASA everytime modem reboots.
View 6 Replies View RelatedWhen i reboot asa 5540 firewall times settings to default
View 12 Replies View RelatedWe have ASA running code 8.0.4 with Active/Standby for quite long time. Today when we gave the command wri standby it started sync the config to standby ASA but waited forever.when we checked the show failover, we got the following result.
This host: Secondary - Active
Active time: 1928633 (sec)
slot 0: ASA5540 hw/sw rev (2.0/8.0(4)) status (Up Sys)
Interface PERIMETER-MGMT (10.12.8.1): Normal (Not-Monitored)
Interface OUTSIDE (86.36.xx.xx): Normal (Waiting)
[code].....
When we console to Standby ASA and tried to save (wri mem), we got the following error and also please note the hostname has become default...?
ciscoasa(config)# wri memory
Building configuration...
Command Ignored, Configuration in progress...
[FAILED]
and when we tried to give following command we got this error:
ciscoasa(config)# copy running-config startup-config
Source filename [running-config]?
%Error reading system:/running-config (Configuration temporarily locked)
ciscoasa(config)#
I see here the standby ASA IPS module is down, but can that issue cause not sync the config backup and writing to nvram (save config)..?
I have a Cisco PIx firewall that is connected to a cable modem with Time warner cable. I am supposed to have 35 down and 5 up for my speed on that modem. When I bypass the firewall and connect directly to the cable modem, I get download speeds in excess of 30 and upload speeds of about 5. However, when I connect via my workstation, which goes through the PIX, I am lucky to get speeds in the 1.2 for a download and 2-3.5 for the upload. I am using a laptop to test. We have gigabyte Cat5e cabling and gigabyte switches.
Below are statements from the config.The interface lines are per below:
interface ethernet0 100full
interface ethernet1 100full
interface ethernet2 auto shutdown
MTU outside 1500
How can i adjust this so I can make use of the 30 speed of the modem?
I am looking for the way to define an idle timeout for specific flows on an ASA5580 by using Cisco security manager. For ex I needed to define a specific idle timeout for connections beetween specific devices (Devices in vlan1, Device2 in vlan2).To test it I did following changes by CLI and it works fine. access-list L1 extended permit ip <@IP1> <mask1> host <@IP2> class-map CM1 match access-list L1 policy-map PM1 class CM1 set connection timeout idle 02:00:00
I try do do the same configuration with CSM in order to be able to manage each changes only by using CSM.So I defined Access control list, Traffic flow and then I define timeout in CSM --> PIX/ASA/FWSM Platform --> Service Policy Rules --> IPS, QoS and Connections Rules -> connections settings -> Traffic flow idle time-out. The problem is that each time I deploy the configuration with CSM I loose the timeout config line which is the most important for my application..
I have newly deployed network. I have two ASA5520-AIP20-k9. both connected to ISP and configured as Active/standby failover. the ASAs were working fine at first but later on, the internet connection becomes very slow. the ping reply i am getting from my next hop(ISP router) varies during the peak hour is some times in 2000 msec or above but during off hours, the ping reply time is 1 and 2 msec. when I directly connect my laptop to the link that comes from the ISP its ping reply is 1msec and 2msec. I thought the ping reply of the ASA5520 to the ISP gateway should be constant and should be 1 and 2 msec regardsless of the traffic passing through the firewall.
View 1 Replies View RelatedI have a fresh out the box asa5510 with 8.4 on it.I have built these before but for some reason cannot get this one to work. I am consoled on, have applied the following config but can still not ping to or from, can not asdm, cannot http/s. Arp table shows device it tries to ping, but device trying to pping it has incomplete arp entry. [code]
View 7 Replies View RelatedCiso 1941 router frozen once a day, sometimes after 2 to 7 days. When the router frozen, no internet connection and cannot login/ping ethernet ports. I can login to console port and copy the error messages below. Reload the router and it will return back to normal operation. Re-installed IOS but still the same.
IOS Version 15.1(2)T2,
Cisco CISCO1941/K9 (revision 1.0) with 487424K/36864K bytes of memory.
DRAM configuration is 64 bits wide with parity disabled.
255K bytes of non-volatile configuration memory.
250880K bytes of ATA System CompactFlash 0 (Read/Write)
[code]...
I have WRT54G2 router. All settings are more-less default and the behavior is following.You start up the router. If you do not connect wireless device within 10 minutes, then you have to restart the router.You have assigned IP via wifi, and when you connect cable device to the router, the wifi PCs are disconnected.
View 3 Replies View RelatedI recently purchased a X2000 ADSL modem/router combination. For some reason the current time will not stay set to the time zone. Rebooting clears the discrepancy for a short time before it drops an hour exactly. I'm in the central time zone and the setting are correct on the basic setup.?
View 1 Replies View RelatedIs the WAG320N iPv6 compatable ? ,or could it be with a firmware update ?.Is the X2000 in the same boat in iPv6 terms as th WAG320N ?.Is there a way of retrieving "UPTIME" / "DSL connection time" information from the WAG320N and also line attenuation stats etc.Wouldn't need the above but poor isp needs keeping an eye on.
View 3 Replies View RelatedI installed a new ASA using 8.2.2 version and ASDM 6.2.5 version in contexts mode.When i enable logging for ASDM as debugging i cannot use the real time log viewer because I have an error "Syslog connection Lost. Try restarting the syslog connection", I tried to reconnect using the icon at the bottom but nothing change.
View 9 Replies View RelatedI have an ASA 5520 with the Intrusion Prevention Module.The time displayed on the ASA is correct.The time displayed in all Intrusion Prevention gadgets is ahead exactly 4 hours.Under configuration, Time the Time Zone is correct, Eastern in my case. The sensor local time on the same page is correct and is grayed out.I only work in the ASDM as I am far from being a CLI person.I don't think the time being off is causing any issues, but it is strange.
View 1 Replies View RelatedI have an issue on an ASA 5510 that I have noticed today, when I am using the log viewer all of the information recorded only shows the high end source and destination ports. For example
Source IP 10.10.4.69
Source Port 59886
Destination IP 8.8.8.8
Destination Port 59866
So what seems to be happening is that I am seeing only half of the connection in the log viewer, I see the side with the high end ports and not the side with the ports the application uses, this example was done with a ping. All my services are working correctly and the client sending the ping gets the response expected, it just seems I have lost the logging display?
I'm new to an ASA 5510 running 8.4(3) and am trying to figure out something regarding time ranges in ASDM. I simply want to allow a single port during business hours only (I'm not concerned about open sessions needing to be closed). So as an example I add a rule something like:
(RULE1 on the internal interface) SRC=INTERNAL DEST=ANY SERVICE=RDP ACTION=PERMIT with a time range set for weekdays 8:00-16:59. I did a test after 5pm on a weekday and was still allowed to do RDP to a server (from INTERNAL), and after using the packet trace tool saw it was still passing through due to a rule a couple lines down (rule 4) that allowed a port range that happened to include port 3389. So my question is if I specify an "allowed" time range and someone attempts access outside that time range, why doesn't it drop it right there? I guess I'm assuming that anything outside the "allowed" time range would be dropped but that doesn't seem to be the case. I'm also assuming the rule base is processed top to bottom.
AI have a Dir-825 router. The 5GHz is turned off and the wirless is on G/N. I have shawcable for my isp and my firmware is 2.06 and its a Rev B Router. I also have Qos Engine on for allowing me to have 2 xboxes on Open NAT.problem is my wireless signal for some wired reason is VERY weak. A while ago it used to work really far way outside. It was around 150ft distance at 4 bars. Now for some reason I can't even go upstairs without getting a 1 or 2 bar signal.
View 3 Replies View Relatedi have had my dir-655 one year now, have never had wireless problems with it until now.my notebook's internet gets very slow somedays, i just restart my router and then internet speed works normally.i have:
Hardware Version: A4 - Firmware Version: 1.32EU
I'm running into this issue on an ASA 5520 running version 8.2(2)9 and ASDM version 6.2(1).
I have an ACL denying traffic to a certain IP range and the logging level set to Debugging. The hit count is rising quite rapidly but when selecting "Show Log" the Real-Time Log Viewer opens with a value of 0x13d0ee2a in the "Filter By" field and no logs are ever shown.
Logging is enabled globally and Logging Filters on ASDM is set to Debugging as well.
how I can get the RTLV working?
We have a Cisco ASA 5520 and im looking for a way to monitor largest outgoing and incoming traffic per ip in real time so to know which of my internal computers are using the most of our Internet Line. Is there a way to this through ADSM ? We use version 6.3.
View 1 Replies View RelatedI have a new ASA 5510 running 8.3(1) and ASDM 6.4(5)
I am trying to use the real time log viewer to troubleshoot some access issues, but I am getting delays of up to 30 seconds or more between my client connecting to the ASA and the corresponding events showing in the RT Log viewer. I am using a simple filter for source IP as it's quite a busy device.
I've seen an article that says to turn off certain logging IDs (such as 304001 from memory) which I have done, but no different.
I have an ASA 5520 and I'm using Solar winds real time interface tool to monitor the through put of the port. It seems I can never get it to use more than 100mb, where should I check?
I have run a sh int giga 0/1 and it shows the port is 1000mb full duplex and the I have also checked the other end where it plugs into the LAN and this also says the port is running at 1000mb full duplex.
I want to be able to gather some time metrics based on source IP, and destination port. Is it possiable to track how much time a user spends using a service based on it's port number. I have figured out how to capture all the data, and I can then look at timestamps, but I would like a better way if possible. Can this be done at the firewall, or do I need a different appliance?
View 1 Replies View RelatedIs it possible to use my atom mini itx with pci + pci nic card and creating a firewall? No possible problems between using the motherboard port and a pci port? I'd like to fool around with smoothwall or another firewall software.
View 6 Replies View RelatedI have 3745 router with NM-2CE1T1-PRI card and i am trying to connect RJ 45 from this card to DB9 on modem. How to assemble pinouts to prepare the cable..
View 1 Replies View RelatedWhat is the difference between rj45 and rj48 connectors? Are they interchangeable?
View 7 Replies View RelatedWe have a customer in a country where the local telecom hands out the data E1 link in a G703 interface with two coaxial cables (Tx & Rx) out of a Watson/Schmidt Telecom SHDSL modem.
We need a way to convert the G703 cables and signaling to a regular RJ45 so that we can connect it to the customer firewall which has regular gigabit Ethernet connections. Some have suggested a 1941 with a serial and gigabit cards. We just need a affordable solution for this and the configuration.
My Storage supports RJ45 Connectivity. Some it gives slow performance. What if i connect all the Macpro using fibre optic and use some sort of converter to convert all the fibre connection to LAN. Will it increase performance?
View 2 Replies View Related