Cisco Firewall :: Does The ASA 5520 Support A Product Called Untangle
Feb 27, 2011Due to a cost savings campaign we are trying to use open source as much as possible. Does the ASA 5520 support a product called 'untangle' ?
View 2 Replies
ADVERTISEMENT
Cisco Firewall :: Does ASA 5520 Support Dual Network Drops
Oct 9, 2011We are looking to deploy an ASA 5520, but I need to know if it is possible for it to work in this environment.
We have colo space, with two IP ranges. They provide two network drops, one from each switch connected to different routers. One in which has 4 usable IP's for management purposes. This address range will be used only for remote access to the ASA and VPN into the management VLAN. The management VLAN will have all internal devices such as the switches, etc. The second range is for the servers, of which will be assigned directly to the hosts and the ASA will need to act as just a firewall. I can do this on IOS, but not sure about the ASA.
I need to answer the following questions:
Does the ASA support dual network drops, and would this be a failover port configuration in order for it to work?A management VLAN with outbound internet access only, and VPN/RA capability. NAT will need to be used I'm guessing. Can we have a DMZ VLAN which has defined ports, say 80, 443 and 25 inbound and outbound. I need the hosts to have the public IP assigned to them with no NAT configuration.
I know there are some advantaged to using NAT, but I really can't use it because the applications behind prefer public IP's being assigned to them.
Cisco Firewall :: BOM Product Licensing Of 5500 ASA
Aug 27, 2011I am pretty new to cisco and the learning community forums is truely one of a kind.Actually, I work on a company which deals the Cisco products, Routers/Firewalls/Switches and stuffs. I am sure you get the picture. What confuses me is the product licensing of ASA5500. To be more specific, we are proposing certain things. And that came with the product pricing sets and all. But I amn't having a clear picture on ASA 5500 Strong Encryption License (3DES/AES). Does that come inbuilt(free) or should there be any pricing behind that!?
View 5 Replies View RelatedCisco Firewall :: ASA5540-AIP20-K9 / Discover Actual Product Part Number
Nov 16, 2011how can i discover product actual part number from the device through console.I have a bought a cisco ASA5540-AIP20-K9 and i want to check either is the product is shipped us as a right product.And i want to check total BoM requriements from entering the ASA console through any CLI Command.Below My Cisco ASA BoM which i purchased.
ASA5540-AIP20-K9ASA 5540 Appliance w/ AIP-SSM-20, SW, HA, 4GE+1FE, 3DES/AES1CAB-ACUAC Power Cord (UK), C13, BS 1363, 2.5m1SF-ASA-8.3-K8ASA 5500 Series Software v8.31SF-ASA-AIP-7.0-K9ASA 5500 Series AIP Sofware 7.0 for Security Service Modules1ASA-VPN-CLNT-K9Cisco VPN Client Software (Windows, Solaris, Linux, Mac)1Included: ASA5540-VPN-PRASA 5540 VPN Premium 5000 IPsec User License (7.0 Only)1Included: ASA5500-ENCR-K9ASA 5500 Strong Encryption License (3DES/AES)1Included: ASA-AIP-20-INC-K9ASA 5500 AIP Security Services Module-20 included w/ bundles1Included: ASA-180W-PWR-ACASA 180W AC Power Supply1Included: ASA-ANYCONN-CSD-K9ASA 5500 AnyConnect Client + Cisco Security Desktop Software1CON-SU1-AS4A20K9IPS SVC, AR NBD ASA5540 w AIP-SSM-20,4GE + 1FE,3DES/AES1
DIR-655 Untangle And Juniper VPN Client
May 30, 2011I decided to switch away from my DIR-655 wireless router due to multiple issues and go with an Untangle box. Everything appears to be set up great... except when it comes to my VPN connection to work via Juniper VPN Client v. 6.5.0.15507. For some reason, the VPN connection keeps dropping every 3-5 minutes and I have to wait for it to either reconnect, or sometimes the client completely stops and I have to restart it.
View 16 Replies View RelatedD2700 / Untangle On A Dual Core Atom?
Jun 7, 2012Thinking of playing with an appliance for Untangle. Let's say I do a D2700. Right now I'm running Untangle in a VM, which after some network tweaking, runs well given 1 vCPU on a box with an Intel X3440. My load average is real high (6 to 13) under really heavy load...pulling full 50Mb down, probably 300KB/s up...and about 900 sessions (heavy Bittorrent or something..worst case for me).
View 19 Replies View RelatedRunning DD-WRT On ASUS 520GU - PfSense Or Untangle
May 1, 2011 so I have a new Supermicro X7SPA-HF-D525 Mobo 4GB ram comming in and am wondering what firewall software I should put on it. This is for home use. Currently im running DD-WRT on an Asus 520GU, so anything is a step up. I have played with both, though Untangle only for about 20 or so mins on a VM, and pfSense for about an hr or so on an old P4.
By first glance at the untangle, one thing I didnt like was it looked like if I wanted anything I had to pay a yearly subscription for the same stuff that was offered for free or already included in pfSense. But i see alot of people swaring by Untangle.
Netgear WNDR3700 / Untangle Worth It For Home Network?
Jan 11, 2012I've been replacing my Netgear WNDR3700 (currently only serving as wired router and gigabit switch) with an Untangle box.Obviously, only the free "Lite" version would be worth it, as the others are priced ridiculously for non business use. I've had a hard time figuring out from their webpage how the features of the "Lite" compare to the others, particularly how Spam Blocker Lite, Web Filter Lite and Virus Blocker Lite compare to the full versions of each.
Is the untangle router any good? How do its management features compare with consumer solutions?The new web caching feature seems really cool too, especially when multiple systems grab the same large updates or download the same steam games, but at $54/year it seems a bit excessively priced for home use, so I'd probably just be sticking with the base free version.
Cisco AAA/Identity/Nac :: ACS 5.3 Auth Report Called-Station-ID
Jun 24, 2012In ACS 5.3 radius authentication report I want to show the called-station-id attribute. (this was appearning on failed and passed auth in ACS 4.2). The value of called-station-id appears in the details. However, I want it to appear as a column with the report.
View 2 Replies View RelatedCisco VPN :: ASA 5520 Support For Blackberries?
Jul 18, 2011Does Cisco ASA 5520 have IPSEC VPN support for Blackberries?
I found the following document:
Supported VPN Platforms, Cisco ASA 5500 Series [URL] The document doesn't say anything about RIM or Blackberries.
The Blackberries have built-in VPN clients where you can select:
Cisco VPN Concentrator 3000 Series
Cisco Secure PIX Firewall VPN
Cisco IOS with Easy VPN Server
The Cisco ASA is not listed there.
Is it possible that using Blackberry with Cisco ASA is not supported?
Cisco :: Monitor Routers 2610 / 2801 And 1760 With Monitoring Software Called Zenoss?
Sep 4, 2011I am trying to monitor routers Cisco 2610, 2801 and 1760 with a monitoring software called zenoss. and I cant see on this devices the powersupply state, temperature sensor, fan state, i dont know if this models of routers cant support the monitoring of this component on the devices.what can i do to monitoring this component? what kind of Oid I can use to get this components state?
View 4 Replies View RelatedLinksys Wireless Router :: Port Forwarding With E2000 For Game Called Minecraft
Jul 15, 2011I've been wanting to port forward this game called Minecraft for quite awhile now, but never got around to it, but now that I've wanted to let my friends that can't play with hamachi play with me. I wanted to port forward it so that they go into the game without using hamachi, or any other networking program. I've already tried once and whenever I ran my server, I would say "FAILED TO BIND TO PORT" or just ask me this "Is another running on that port?"
View 9 Replies View RelatedCisco WAN :: WS-SVC-AGM-1-K9 What Is Product Migration Option
May 8, 2011I see the WS-SVC-AGM-1-K9 was EOL Jan 2010 ,What is the suggested Product Migration Option? Also if any is using this WS-SVC-AGM-1-K9 I would like some feedback ,Our problem is listed below and we are wondering of the WS-SVC-AGM-1-K9 will work ?
Looking at the best option to detect attempts at cracking our SIP servers. We see connections from scanners on the internet trying to brute force SIP passwords reasonably often, and would like to be alerted to them happening. Essentially we see hundreds of SIP registration attempts or Invites from the same IP, and this is how we know it is dodgy.
Cisco VPN :: ASA5520 Not Get A Valid Product Authorization Key To Use
May 8, 2012we have a Cisco 5540 with ASA5500-SSL-100. We have been trying to load the ASA 5500 SSL VPN Premium user License on the appliance but we could not get a valid Product Authorization Key to use.
View 1 Replies View RelatedCisco WAN :: 3750x - Product Registration Number
Apr 8, 2013I just bought 2 Cisco3750 X Switches, After I open the box, there are too many numbers lables on the switch.
1. Which number is for product registration ?
2. Can any give me the link for product registration ?
BTW, can explain to me what is PAK, is it come with the switch ? Where I can find it ? I can find serial number but I don't know how to use it and connect with PAK.
Cisco Infrastructure :: WS-SVC-AGM-1-K9 The Product Migration Option
May 8, 2011I see the WS-SVC-AGM-1-K9 was EOL Jan 2010,What is the suggested Product Migration Option? Our problem is listed below and we are wondering of the WS-SVC-AGM-1-K9 will work ?,Looking at the best option to detect attempts at cracking our SIP servers. We see connections from scanners on the internet trying to brute force SIP passwords reasonably often, and would like to be alerted to them happening. Essentially we see hundreds of SIP registration attempts or Invites from the same IP, and this is how we know it is dodgy. If the Anomaly Detector can alert us to this type of traffic, it will be much easier to stop them quickly.
View 1 Replies View RelatedCisco Wireless :: What Product Replaces A1410 Bridge
Dec 19, 2012I am looking at replacing an aging pair of 1410 bridges that are linking a three mile span, one building on top of a hill, the other down in the valley. I see the product is now EOL and EOS, so now what?
Looks like we're being pushed in the direction of this product: AIR-XLTC50DA31AK9
Cisco Firewall :: Different Between ASA-5520-K9 And ASA-5520-K8
Nov 2, 2012We were using ASA-5520-K9 with ASA-SSM-AIP-20-K9 but recently found some hardware problem in our running ASA. Now cisco want to replace with ASA-5520-K8.
View 1 Replies View RelatedGood Product To Use To Backup Device Configurations?
Apr 5, 2012What's a good product to use to backup device configurations?
View 19 Replies View RelatedFind Product Key Code On Computer That Is Already Connected?
Jun 11, 2011my roommate threw out the key code from my n series router, two pcs are currently connected to this network, I would like to add my iphone but need to find the key code on one of these computers..
View 2 Replies View RelatedCisco :: Translate Called Number Based On Calling Number?
Mar 26, 2011I have some tunnels which terminate to my home router. I'm allowing the other ends of the tunnels to use my voice setup. I need to prepend *67 to all called numbers which don't originate from my house. I don't want people calling my home number based on the caller-id number they see when someone across one of the tunnels calls.
So if 5008 calls 212-333-4444 I want it sent to my provider as *672123334444. If 5001 calls a number, I don't want it touched. Can I do this? I can use IOS or CUCM here.
Linksys Access Point :: Wap55AG Lost Product CD
May 21, 2007A few days ago I had to reinstall my notebook and therefore I lost my network settings. I want to reconfigure my Linksys Wap55AG to let it use a new WEP key but I cant find the software to do so ANYWERE on the net.
View 5 Replies View RelatedWhy WAN Protocols Like Frame-relay / HDLC And PPP Are Called Layer2 Protocols
Aug 20, 2011why the WAN protocols like Frame-relay, HDLC and PPP are called Layer2 protocols?What is the address scheme they use?
View 5 Replies View RelatedCisco Firewall :: Support Of Jumbo Frames On ASA 5500 Firewall Appliance?
Feb 28, 2010Can any ASA 5500 in particular the ASA5510 firewall support jumbo frames (i.e. greater than the default standard 1500 Bytes frames)?. I plan to use the ASAs to setup a point-to-point IPSec tunnel and need an Application frame of 4Kbytes intact and not segment it.I have done little checking on the Cisco Website and see it mention of Jumbo frames on the 5580 on 10Gig interface but didn't see mention 5510. 5580s are way over-kill and expensive for what I need is to run a mission critical one IPSec point-to-point with maximum of no more than 100Kbps so 5510 is perfect for me but not sure if it can carry the jumbo frame?
On the routers and switches it's the MTU settings and they are configurable per interface and I am OK and the circuit is T1 which the Telcos said it's OK since it's physical layer so the only unkown is the firewall.
Cisco Firewall :: 1841 - Which IOS Support Zone Based Firewall
Jan 3, 2013I have a cisco 1841 router , and i want to configure zone based firewall on it. But the document of zone based firewall only said that "after 12.4(6)T" can support zone based firewall. I use the ios " c1841-ipbasek9-mz.124-15.T9.bin ", but it can't support ZFW. What kind of ios support ZFW. for example: ipbase, ent base, ip service ,advent etc.
View 2 Replies View RelatedD-Link 14dBi Outdoor Direct Antenna Extension Cable For This Product?
Aug 19, 2011Anybody know of a extension cable for this product? D-Link 14dBi Outdoor Direct Antenna (ANT24-1400) I need at least 10-15 feet of extra length.
View 1 Replies View RelatedLinksys Wireless Adapters :: WMP600N - What Happened To Product Driver And Firmware
Apr 22, 2012I was looking for drivers to support the WMP600N. They are no longer hosted at url...
View 3 Replies View RelatedCisco Firewall :: SNMP V3 Support IOS On Pix Firewall 515E?
Jun 13, 2012I have an Pix 515E firewall with Pix724-33.bin IOS. I just want to know that does this IOS support SNMPV3 or I will have to upgarde it with some other version.
View 1 Replies View RelatedCisco VPN :: ASA 5520 Support Dynamic IP For Site To Site?
Jun 29, 2011Can the ASA 5520's support dynamic IP for site to site VPN
View 1 Replies View RelatedCisco Firewall :: Upgrade From 5505 To 5520 On Network - ASA Firewall Throughput
Feb 27, 2013I'd like to see some REAL LIFE comparisons of ASA firewall throughput (a bit like this one for ISR G2 Routers - [URL].
The reason I ask is that I recently upgraded a firewall from an ASA5505 to an ASA5520 on a small network where the only outside connectivity was a single 10meg Internet circuit with an IPSEC VPN (not landed on the firewall but on a router) to another site.
When I swapped out the firewall the users noticed a big improvement. The firewall is not doing anything out of the ordinary - no IPS or VPN, just standard state full inspection.
Cisco Firewall :: ASA 5520 - Routed Management Interface On Transparent Firewall?
May 5, 2013I have an asa 5520. How would I configure my dedicated management interface to be able to route off subnet while the firewall is in transparent mode?
View 1 Replies View RelatedCisco Firewall :: 5520 Identity Based Firewall Doesn't Work Using Citric Published
Jul 26, 2012We are using the newest release of AD Agent (1.0.0.32.1, built 598). The ASA Firewalls 5520 are having the software release 8.4(3)8 installed.When somebody tries to connect thru the Identity based firewalls from a citrix published desktop environment (PDI) the connection is not possible. Checking the ip-of-user mapping on the firewalls (show user-identity ip-of-user USERNAME) mostly doesn't show the mapping of the USERNAME and the PDI the user is logged in. The user-of-ip mapping of the PDIs IP-address shows mostly other users, which then are used to authenticate the acces thru the firewalls.
What is interesting, that on the AD Agent using "adacfg.exe cache list | find /i "USERNAME"" i can't see the PDIs IP-address neither because it is mapped to another user.Is Citrix Published Desktop environment supported to connect thru Identity based Firewalls? How AD Agent, Domain Controllers and Firewalls are working together? On the firewalls with "show user-identity ad-agent we see, the following:
-Authentication Port: udp/1645
-Accounting Port: udp/1646
-ASA Listening Port: udp/3799
Why Cisco does use 1645 and 1646 and not 1812 and 1813?The Listening Port is used for what purpose? we tried the AD Agent modes full- download and on-demand with the same effect.
Cisco Firewall :: Launch LAND Attack Against Firewall ASA 5520
Apr 15, 2013I try to launch a LAND Attack against my firewall ASA 5520. Everything will work fine. But why, I think it should not work. I use a little tool where I can user a spoofed address, with a cluster shell and attack the firewall interface with the source of 127.0.0.1 ore the ip address of the interface as the source and destination. Then I get a cpu load of 89% with only two host. With IP tables I can use kernel processes to prevent this. But I don´t find anything for ASA.
View 1 Replies View Related