Cisco Firewall :: New ASA 5510 Causing Corrupt Emails?
Jan 9, 2013
We installed a new ASA 5510 (ver 8.3(1)) on the weekend and since then have had one isolated email issue.Here is the situation. We have a remote office that connects to us via IPsec site-to-site tunnel. They remote in to one of our servers and from that server email themselves PDF's. They have their own exchange server for general use, but the emails sent from our server go through our exchange server of course. The received email shows the user as the sender AND receiver. This previously worked fine.Since installing the ASA though, users get the following error when they try to open the document: "There was an error opening this document. The file is damaged and could not be repaired."They tried this with a text file and the same thing occured. I have disabled SMTP inspection and have omitted the remote office from the CSC SSM scanning. This has not worked. The remote office also has an ASA 5510 (ver 8.2) but no changes were made this weekend. No updates were applied to Exchange this weekend.Previously my office was using a Cisco 1800, Cisco VPN Concentrator 3000 and Untangle gateway box. I replaced all 3 with the ASA. My supervisor is currently at this remote location and he can still email himself attachments from that particular server with no problem through the tunnel.
I have cisco ASA 5510 with basic configuration (default policies). The problem is that windows XP users are unable to send emails form MS outlook and unable to log on to Hotmail , Gmail or any mailing site. While windows 7 and 8 users are not facing any problem.
Our ASA 5510 has been in place for nearly two years, we never have any issue what so ever with it. All along the ASA has been using the default policy. Lately, we beeen getting email deferred in our Barracuda Spam firewall. Google quickly reveals that ESMTP does not play nice with Barracuda witch i disabled eventhough we haven't had any issue with it before. However, the issue remains, we still getting email deferred in the barracuda.
While doing more troubleshooting on the ASA, I constated when issue the command show local-host + IP of the Barracuda, there is an IP address in outside of the interface that can get up to 96 UDP port 53 connections with the Barracuda, this connection never get lower than 20! However, when checking the default setup for the Barracuda, i have the values below:
Incoming SMTP Timeout: 20 Message per SMTP Session : 8 Maximum SMTP Error SMTP Session: 2 Maximum Connection per Client 30m:40
My question is if that ASA show up to 96 DNS session with an outside host to my barracuda, won't that push the barracuda to play email deferred timeout ? Should I change the barracuda default setting? Or should i change the connections limits for the Barracuda in the ASA?
I've configured a Cisco ASA5520, i can access to internet and other applications in my office but when i sent an email from inside to outside and vis-versa, i can't receive emails in both side
I have a Cisco 871w that has been a very great product for many years. I recently switched to Windows 7 x64 on my main machine and now i am having all sorts of issues with it.. I have done a bit of research and found that it appears that it might be the firewall on the SDM that is causing the slowness issues. what does happen is that downloads from known good sites will run really slow. If i hook up my Macbook Pro or my Windows XP laptop i have no issues at all. i have tried Disabling IPv6 as well as SMB2.0 and this has not resulted in a fix at this point.
I have a problem on a router of mine, a Quidway R 1760.The problem occurs as follows. On Friday I rebooted the device and the ARP table looked right, in other words there were only a hand fully of lines that looked like this.
[code]...
I have two requests/questions.how can I prevent it.to a software manual for a Quidway R 1760 or simlar? I need to access the routers OS but have no password for it and cannot find any commands on the internet.
I have a Dell Vostro 200 desktop, about 5 years old. I tried to update the latest Flipshare Video software but it corrupted partway through. system can't find the folders to uninstall so I can reinstall either the previous or the most up-to-date version. I tried the uninstall in safe mode as well with no luck.flip is in husband's name so I can't contact flip for support.
Every file I download seems to be corrupt, although, files I download from another computer and put on a flash drive and install them from the flash drive work no problems at all. I'm putting this here because this might be relevant to the problem, my AMD display driver crashes every once and a while for no particular reason and WhoCrashed points to atikmdag.sys being the problem (I believe I may have fixed the BSOD through a guide) but nevertheless I would like to find out what is causing this. I've been testing things for three days now, different PSU, same, RAM tests came back okay, CHKDSK came back okay as well as wiping my hard drive and re installing windows, fresh download of all the drivers, latest display drivers, no viruses, and done everything on the "Why do I get the NSIS error list"
I am downloading the latest firmware for the Annex A version of the AM200 DSL modem and windows (7 / 2003 / 2008) is unable to extract the contents of the zip.
I occassionally see an issue on my network wherein a few of my devices (my phone, my wife's iPod, and my Ethernet-connected HTPC) will continually return a bad username/password combo when accessing services like Gmail (IMAP/Exchange), Pandora (HTTPS), or Boxee (HTTPS). The seem to have problems at the same time, which makes me think they are doing this as a result of something failing on my router (and yes, I'm certain the saved passwords are all correct since I won't change them and they'll start working again later).
Whenever the problem occurs, I'm making sure the date/time are right on my devices (i.e. certificate validity dates) and that they all sill have normal internet access. If I had to speculate, I'd guess this problem his happening when my router is under significant load and it's dropping some SSL packets.
I'm running the Linksys WRT310N v2 with firmware 2.0.0. I see there's an updated firmware available (2.0.1), but haven't yet applied it - and the release notes don't speak to my problem at all. I've rebooted the router after the last occurrence
I need to forward several ports. however it has been complicated by a missing or corrupt default access gateway. [code] I am leaving for quite a while tonight, hoping to come back to a reply I am using a belkin router ( will get model number and stuff later - not sure if its needed ) * and wow cable and internet url...
I just updated the firmware on the WNR1000v3 router. However all the port forwarding configs that were set up previously have become "ghosts". They do not show up on the list nor work, but I cannot add a new entry.
All of a sudden, my GUI look like this I'm using the latest version of Safari on a MacBook and FW 1.0.04 on the E4200.When I click on one of the menu items the only thing I get is "404 File not found".
Latest firmware with CCC corrupted after power outage. I reseet the e4500 several times and tried to reload the firmware and still no good. Only way I got it back up is to install the older non-CCC version 2.37. Strange all was fine until the power outage. Not sure if I should even bother to upgrade to 2.38 again.
I have some problem with the ASA 5510 ver 7.0(6). My manager wants to keep this as backup. tried lots of things but still users not able to access internet nor can i ping anywhere.For example when i ping 4.2.2.2 i dont get any reply.The runing config is below for ur ref :
I need to create a firewalled segment that not only separates hosts from general population, but also from each other. The solitary confinement of firewalled segments.I know that I could create a bunch of sub-interfaces, one for each host or group that needs to be isolated, but I'd really rather not have to do that if possible. 1) It could become a management nightmare between ACLs and sub-interfaces and 2) it's a waste of IP addresses.s there any way that I can create a bunch of separate VLANs behind the firewall and have them all terminate at the firewall, using a single firewall IP address for the gateway?
I have a ASA 5510 firewall with CSC module and Security Plus license for CSC module.Will you tell me how to configure my firewall to send emails to particular mail ID when someone login into the firewall or any virus attacks from outside.
We were having a discussion of ios firewall vs. asa for smaller clients(less than 50). On using ios firewall(zbf or cbac)and an asa 5505/5510. One of the arguments brought up on using ios firewall on the router is that a router will do an ip sla failover. I have configured a number of isr's for this and i know it works good.
I would just like to to open UDP port 123 in the ASA 5510 Firewall so that our Primary Domain Controller could use this port to sync time with an external time source. We have already added an access rule for this port under the firewall configuration in ASDM 6.4 and this port was also allowed in the inbound and outbound rule of the PDC's Firewall but it seems that it was still blocked.
I am quite new to firewall, in my company one asa 5510 firewall is there.I configured inside, outside, dns, dhcp and nating.I need to config bandwidth limit (1Mbps) for inside port and I restruct like facebook, youtube and pornsites..And I heard that some subscription is required, really is it required?
I have an ASA 5510 in a live environment. Up til a short while ago I could access this via the ASDM and ssh. However I can no longer connect to it via eithier. When I access It via SSH I get a disclaimer saying the following
*** You have entered a restricted zone! Authorized access only!!! Disconnect immediately if you are not authorized user! ***
It then cuts me off.
When I try to access the ASDM I get the following
The firewall is running all its services without a problem and I can ping the device without any issues. Also none of the config (to my knpowledge has been changed). I set up a console session and http server enable is still there with
I have just configured identity firewall on our ASA 5510.I have 3 nodes that authenticates against Active Directory, using the Windows Server 2008 R2 builtin Network Policy Server: A laptop, a stationary PC, and a Android Phone. All 3 nodes are authenticated using the same user/password.
Now, in ASDM -> Monitoring -> Properties -> Identity -> Users, I can see two of the nodes with my user name attached to it, namely the laptop and the stationary PC.But not the Android phone.
Then it dawned on me. To set up the ADAgent properly, you have to apply 2 group policy entries. Unfortunately, those 2 entries are applied to the Computer Configuraton part of the Group Policy.This means that your COMPUTER has to be a member of your domain for USER IDENTITY to work.So my Android phone and other nodes not a member of the AD Machine Store will never be detected by identity rules, and can roam the network free.
I'm trying to install an ASA 5510 transparent firewall using ASA version 8.4(3)9 but I don't understand how traffic will ever pass through my firewall if both interfaces are on the same sub net(V lan) as the host and it's default gateway? The reason I'm doing this is were installing UAG (or Direct Access) and the UAG appliance need to have public IP's but still be behind a firewall (see attached diagram).
Looking at the documentation (which all seems to be for 5505's running 8.2) it almost seems like i need to have the transparent firewall 'in-line' to the ISP router?, but this router services another IP address range on another v lan for other (routed) firewalls (not shown on diagram) so putting it 'in-line' is not possible. Surely this can't be the case can it? If not how is it supposed to be cabled up and configured so packets go through the firewall?
I currenty have 2 cisco 5510 firewalls one of the firewals is completly dead but contains a Cisco ASA SSM-10 can i remove this card and just place it into a working unit, will i have any problems doing so.
I am unable to see 4th interface on my firewall i.e fastether0/3 on my firewall ASA 5510.
Below is the output. ciscoasa# sh int ip br Interface IP-Address OK? Method Status Protocol Ethernet0/0 x.x.x.x YES CONFIG up up Ethernet0/1 x.x.x.x YES CONFIG up up Ethernet0/2 unassigned YES unset administratively down down Internal-Control0/0 127.0.1.1 YES unset up up Internal-Data0/0 unassigned YES unset up up Management0/0 192.168.1.1 YES CONFIG up up
This is my first time to use the Cisco ASA 5500 family. I have a request from a user to create an access rule, to allow all LAN traffic to Destination IP address 165.241.29.17, 165.241.31.254 with Destination TCP port 5060,5061,5070 and UDP port 50000-52399.
We have setup new ip camera system and as per our vendor to access the camera from outside we need to open,TCP ports and in firewall and forward to our camera server.
Let say our public ip address is 207.114.111.22 and our local ip address for the camera is 11.11.1.30. We have cisco asa 5510.
We've in our company a Cisco Asa 5510 v8.4(3), Asdm 6.4(7) and a SSM-CSC-10-K9. The firewall is in transparent mode. I get an exchange 2003 SP2 server behind. When users trying to send mailing lists with many recipients (above 300), the Exchange server didn't send these mails. I'm pretty sure that this problem come from the ASA Firewall, because when I plug my server directly on my Internet Connection, the mailing list is sent. I've search on the web, and disable "ESMTP Inspection", but it didn't work. [code]
