Cisco Firewall :: Connect 5505 To 5510 Direct Via Crossover?
Mar 23, 2013A bit of a straight forward question, is it possible to connect a 5505 to a 5510 direct via a crossover or do you need a switch inbetween capable of trunking?
View 1 Replies
ADVERTISEMENT
Cisco Firewall :: ASA 5505 / How To Direct A 2 Sub Network To 2 Different ISP
Jul 26, 2011With an ASA 5505, i would l like to guide a sub network to an ISP and another sub network to the other ISP.i have 2 differents ISP.My major problem is the metric. I tried with access-list command to force the way out, but it seems that "metric" is stronger than "access-list".I don't know how to manage such LAB. is that possible with ASA 5505 appliance?
View 9 Replies View RelatedCisco Firewall :: PIX 515E / ASA 5510 Heartbeat Failover (Direct Connection)
Apr 2, 2011Currently, my customer has 2 units of Cisco PIX 515E running on Active/Standby mode. As for the heartbeat link, there are 2 dedicated switches placed in between both the Cisco PIX 515E i.e. FW1 --> SW1 --> SW2 --> FW2.
My customer will be changing both the Cisco PIX 515E to Cisco ASA 5510. Now, they are asking me, since they will be using Cisco ASA 5510 eventually, can the heartbeat link be a direct UTP cross cable or must the 2 switches in between still exist?
I remember I have tested this before, few years back, in the event I were to pull out the UTP cross cable that's connecting both the Cisco ASA 5510 Firewalls directly (without any switches in between), the Active/Standby mode still works fine. It doesn't go bad whereby both the Cisco ASA 5510 suddenly becomes Active/Active, and causes network issue.
Are switches required for the heartbeat link in a Cisco ASA environment or can a direct UTP cross cable connection be adequate.
Cisco VPN :: ASA 5510 / Direct Specific Ports Down A L2L VPN?
Apr 18, 2013I have a client that is trying to use an ISP hosted web filtering and content management gateway, the ISP wants to use and L2L ISPEC VPN from the site to their gateway to control traffic. We got the tunnel up today with a test ACL for test client side devices to go down the tunnel, but they are blocking all traffic that isn't being scanned. The problem is they are on an ASA 5510 with 8.2.2. You cannot add tcp ports into the nonat ACL, it errors out when you try to apply the nat (inside) 0 access-list nonat statement. We can define ports to go down the VPN in the interesting traffic ACL with out issue, but there is no way to send just the web ports down the VPN, and allow other ports out the regular overflow interface NAT. I have been looking into 8.4 and seeing if it allows a policy NAT (twice NAT for the VPNs) to define a port on an IP range (IE: nat (inside,outside) source static WEBINSPECT WEBINSPECT destination static any any ) but define that as web ports only.I don't have a test ASA to use, but i'm guessing that l2l vpn will be by IP only and I can't define a port to tunnel.
View 8 Replies View RelatedCisco Firewall :: IOS Firewall Versus ASA (5505 / 5510) For Smaller Clients (less Than 50)?
Apr 24, 2012We were having a discussion of ios firewall vs. asa for smaller clients(less than 50). On using ios firewall(zbf or cbac)and an asa 5505/5510. One of the arguments brought up on using ios firewall on the router is that a router will do an ip sla failover. I have configured a number of isr's for this and i know it works good.
View 1 Replies View RelatedCisco Firewall :: Information On ASA 5505 And 5510
May 22, 2011I´m looking for a firewall for my company and am reading about both Cisco ASA 5505 with Security Plus bundle and Cisco ASA 5510 with Security Plus bundle and I have a few questions.This is the document i´m getting my information from.URL,It states the following:Cisco ASA 5505 Security Plus bundle,Includes Cisco ASA 5505, unlimited users, 8-port Fast Ethernet switch, stateful firewall, 25 IPsec VPN peers, 2 SSL VPN peers, stateless Active/Standby high availability, dual ISP support, DMZ support, 3DES/AES license, and 1 expansion slot.
View 5 Replies View RelatedCisco Firewall :: Upgrade From ASA 5505 8.2 To ASA 5510 9.0 (1)
Jan 24, 2013I am trying to find out the best path to upgrade to two ASA 5510 running 9.0 (1). I know there are changes in the new version. Let me know what information you need and i will post.
View 2 Replies View RelatedCisco Firewall :: Traceroute Between Two ASA 5505 And 5510
Oct 15, 2012We have a ASA 5505 and a 5510, that we are using site to site..I need to traceroute from the 5505-5510.. From the outside interfaces.. Don't want to do this through the site-to-site.I have temporarily added a few acl on the outside interfaces..
-access-list outside_in extended permit icmp any any unreachable
-access-list outside_in extended permit icmp any any time-exceeded
-access-list outside_in extended permit icmp any any echo-reply
when i traceroute it only goes one hop.. Maybe thats the way it suppose to be? I need to know all the hops between the outside interfaces on the 5505 to the outside interface on the 5510.
Cisco Firewall :: How To Configure ASA 5505 And 5510
Mar 18, 2012I am absolutely new in the enterprise firewall world but I would like to start learning how to configure ASA 5505 and 5510. I did some research myself and I found that the material or the topic itself is a huge adventure (lots to read and understand). My company uses IOS versions until 8.2 due to the differences in the NAT-ting rules with 8.3 and 8.4.
View 1 Replies View RelatedCisco Firewall :: ASA 5510 And 5505 Setup
Aug 16, 2010I currently use MS ISA Server 2006 to protect a windows internal network, where there is also an MS Exchange server. I have acquired a Cisco 5510 to enhance security at main office. Later I will have ASA 5505 for branches, including VPN-ning. to have firewall at main office. I have several public IPs and would like to setup DMZ for Web, Exchange server and FTP. How do I setup interface and sub-interface for the DMZ?Can I continue using ISA Server connecting to Cisco 5510 on the perimeter? If so, How do I set the interfaces (and sub-interfaces) as well as NAT-ting and access configuration between the inside and outside?
View 12 Replies View RelatedCisco Firewall :: Moving From ASA 5505 To 5510?
Mar 6, 2011I have a customer moving from a 5505 to a 5510. They are currently running websense express, which monitors and filters traffic based off of a port mirror on the ASA. Can this function still be performed on the ASA5510? If so, I am having trouble figuring out the method.
View 6 Replies View RelatedCan't Connect To PC With A Crossover Ethernet Cable
Dec 29, 2012my laptop has a very annoying habit of disconnecting from the internet, on annoying ass random occasions, the network dropped. When my laptop connected back to the internet again, my pc now says that there is no internet access coming from the cable. I have reset both my laptop and my pc, the router and changed cables. I have also enabled NETBios with TCP on both computers, but nothing.
View 5 Replies View RelatedCisco Firewall :: Traffic Shaping ASA 5510 Vs 5505?
Oct 19, 2011Is there any difference with traffic shaping capability on the 5510 as opposed to the 5505? is there anything the 5510 can do that the 5505 cant? with regards to TShaping?
View 4 Replies View RelatedCisco Firewall :: ASA 5505 And 5510 DHCP Limitations?
Nov 17, 2011Our company is planning to buy one of cisco ASA 55xx series.But there is still one question left about DHCP pool limitations.Here I found some information about licensing for DHCP on ASA 5505: [URL]In other words, we don't have any information about ASA 5510, which contains DCHP pool licensing.
View 9 Replies View RelatedCisco Firewall :: Trace Route Between Two ASA 5505 And 5510
Oct 15, 2012We have a ASA 5505 and a 5510, that we are using site to site.I need to traceroute from the 5505-5510.. From the outside interfaces.. Don't want to do this through the site-to-site.I have temporarily added a few acl on the outside interfaces.when i traceroute it only goes one hop.. Maybe thats the way it suppose to be? I need to know all the hops between the outside interfaces on the 5505 to the outside interface on the 5510.
View 12 Replies View RelatedCisco Firewall :: Webfiltering On ASA 5505 / 5510 / 5520?
Feb 12, 2013is it possible to configure a webfiltering on ASA 5505,5510,5520 ? So if its possible can you provide us a configuartion template.
View 3 Replies View RelatedConnect Two Computers (XP And Windows 7) Using Crossover Cable?
Jul 2, 2011I'm trying to connect my two computer (XP and Win 7) using a crossover cable. I set the the IP as 192.168.0.1 and 192.168.0.2.The computers can see each each other and I can access the public folder of the win7-machine on my XP-machine. However, if I try accessing the xp-machine it says:
Quote: You don't have permission to access \PC. Contact your network administrator to request access.
Both computers can ping each other without problems.I've tried rebooting the computers, plugging the cable out and back in again, turn Internet (wifi) off but it doesn't work. Also, the File and Printer Sharing is enabled, too. Disabling the firewalls won't work and I deactivated the user/pass login so there is no password needed.
Cisco Firewall :: ASA-5510 / ASA-5505 Loses Connection To Gateway
Jun 23, 2011I have an ASA-5510 in a location that loses connectivity to the wan gateway after anywhere from five to fifteen minutes. At first I thought that the unit might be defective, but I replaced it with an ASA-5505 with similar results. A reload of the ASA-5510 will restore connectivity for the next quarter hour.
Here's the version information on the 5510:
Cisco Adaptive Security Appliance Software Version 8.2(1)
Device Manager Version 6.2(1)
Compiled on Tue 05-May-09 22:45 by builders
[Code].....
Home Network :: Connect Two Computers Using A Crossover Cable?
Jul 3, 2011I'm trying to connect my two computer (XP and Win 7) using a crossover cable. I set the the IP as 192.168.0.1 and 192.168.0.2.The computers can see each each other and I can access the public folder of the win7-machine on my XP-machine. However, if I try accessing the xp-machine it says:
View 2 Replies View RelatedConnect Laptop To Computer Using Ethernet Crossover Cable?
Jul 30, 2011i use a home pc and i want to connect to a laptop that needs cleaning out i have a etherrnet crossover cable and i am using windows 2000 pro
View 1 Replies View RelatedCisco VPN :: 5510 / 5505 - Connect 2 Networks Via ASA Software Version 8.41
Feb 22, 2011I use a ASA 5510 and a ASA 5505 and want to connect 2 networks via VPN ASA software version is 8.41. Network 1 has address 192.168.90.0 Network 2 has the address 192.168.5.0 I use site to site VPN wizard on both asa and create the VPN connection. do I need to create acl after that?the PCs on network 1 must have access to a resource in the network 2 how do I create static routing to connect the both Network.
View 1 Replies View RelatedCisco Routers :: Setup And Connect Two RV082 Together With Crossover Cable Between WAN Ports?
Jul 6, 2011how to setup and connect two RV082 routers together with a crossover cable between their WAN ports.This is to connect two separate LANS together via an ethernet connection. For staging we are setting everything up with a crossover cable in our shop. Ultimately the crossover cable will be replaced by a microwave link between the two LANS several miles apart. There will be no internet connection.
View 5 Replies View RelatedCisco Firewall :: Unable To Access Remote Network After Connecting ASA 5510 And 5505
Sep 24, 2011I am using two firewalls to connect two different offices. Firewall 5510 is running ASDM 6.3 and 5505 is running ASDM 6.2, Problem is that even after connecting two sites, i am unable to ping remote network from either side. I am mentioned static route as tunneled.
View 1 Replies View RelatedCan't Connect To Direct TV HD Receiver
Jul 23, 2011Just updated my DTV to a HD receiver which has the ability to access movies/shows via internet so I hard wired my belkin router to the TV receiver and I can't get it to connect. The router light does not go on showing me I am not connecting to the TV receiver. When I go into the DTV receiver it reads all my IP address and has an OK behind them, but says there is an error and the internet is not connected. When I plug the same cable into my PC or my laptop the light on the router does come on. Also my iphone does receive WIFI via the same router. I called DTV and they said everything on the receiver is correct. I called my router folks and they said everything is correct and that it must be the DTV receiver. I've been using this router for several years and their tech guy sounded like he knew what he was doing. how I can get the router to recognize the TV receiver?
Here are my router settings: I used the WAN IP info in my TV receiver. Home| Help| Logout Internet Status: Connected LAN SetupLAN SettingsDHCP Client ListInternet WANConnection TypeDNSMAC AddressWirelessChannel and SSIDSecurityUse as Access PointWireless BridgeFirewallVirtual ServersClient IP FiltersMAC Address FilteringDMZWAN Ping BlockingSecurity LogUtilitiesParental ControlRestart
[Code].......
Cisco Firewall :: ASA 5520 With Windows UAG Direct Access In DMZ?
Dec 16, 2010I'm trying to set up Windows Server UAG for Direct Access in a Testlab. The UAG Server has two network nics. One in my Testdomain (internal) and the other one in a DMZ of our Cisco ASA (external).Our ASA dmz has subnet 192.168.3.x but UAG Direct Access needs public ip adresses.Is there documentation how to configure an ASA 5520 Firewall so i can use my Windows UAG Server with Direct Access?
View 7 Replies View RelatedCisco WAN :: Direct Connect A 1721 And 1760
Feb 10, 2012I just purchased one of each of the above, both with 1ea WIC 1DSU-T1, and would like to connect them directly to each other in a lab scenario. Do I need to have an RJ48 cable or will an RJ45 work? I have them connected now, but they are not seeing each other. They are connected via S0 on the 1721 and S1/0 on the 1760.
View 5 Replies View RelatedDirect Connect Works But Not Through Router
Jul 17, 2012In my hotel, it is currently running a free internet, through ethernet port/cat5 wire When i plug the wire into my port, the internet works fine, as i am sending this message now, However, when i plug the cable into my router, and i try to connect to the internet, it gives this message through chrome Error 105 (net::ERR_NAME_NOT_RESOLVED): Unable to resolve the server's DNS I'm currently running through the google free dns, i've cloned my mac address direct connect works, however router does not.
IPConfig Logs, direct connected to the internet through wire and connected to the router.
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:Documents and SettingsLarry Wong>ipconfig /all
[Code].....
How To Connect 2 Pc With Direct Ethernet Cable
Oct 24, 2012i want to transfer files, remote desktop, lan gaming....actualy lan gaming works fine without doing anything just connecting the cable
but how do i transfer files and remote desktop....what software do i need?
note:
pc1 windows 7
pc2 windows xp
Cisco Firewall :: 5510 - Cannot Connect To ASA With ASDM Or SSH - Firewall Running Ok
May 21, 2013I have an ASA 5510 in a live environment. Up til a short while ago I could access this via the ASDM and ssh. However I can no longer connect to it via eithier. When I access It via SSH I get a disclaimer saying the following
*** You have entered a restricted zone! Authorized access only!!! Disconnect immediately if you are not authorized user! ***
It then cuts me off.
When I try to access the ASDM I get the following
The firewall is running all its services without a problem and I can ping the device without any issues. Also none of the config (to my knpowledge has been changed). I set up a console session and http server enable is still there with
http 192.168.200.0 255.255.255.0 inside
Cisco Firewall :: Exchange Direct Push / ASA 5540 / Barracuda?
Jun 15, 2011I have the following scenario.
INET
(205.50.50.1)
|
|
(205.50.50.2)
[CISCO ASA 5540]
(10.10.10.1)
|
|
+ ---------------------------------------------+
(10.10.10.2) (10.10.10.3)
[BARRACUDA] [Exchange SRV]
Mail Domain: mail.domain.com (205.50.50.50)
Ok so the mail flows to the Barracuda using a static 1:1 NAT configuration and then gets delivered from the Barracuda to the Exchange server. I want to implement active sync (Direct Push) for Windows mobile devices. They need to communicate with mail.domain.com over port 443. The problem is I want mail to continue to flow to the Barracuda, but direct Direct Push traffic to the Exchange server.I cnow I can't implement two 1:1 NAT mappings from the same external hostname to 2 different servers.
Broadband :: Direct Connect Cable Modem To Computer?
Jan 7, 2011I have a new router (ASUS RT-N10)and It is asking me to direct connect my cable modem to my computer, and then find my MAC address via command prompt, and clone it to the new router.I can get to my command prompt, the problem lies in windows 7 and vista's (or mine) inability to realize that my network card is directly connecting to the modem. (No internet connection available, doesn't think anything is connected). I have tried on multiple machines to try and find my modem's mac address but it simply is not working.I want to know if I can find the mac address through the old router, or what I need to do to have windows 7 recognize I'm directly connecting the modem to the PC.
View 3 Replies View RelatedRouters / Switches :: To Connect ADSL Direct To Computer
Dec 2, 2012I have CentOS and the application I am running does not listen on 192.168.1.5 (Private IP address). Right now I have connected using bridge mode and I can see in my network configuration-> ppp and eth0. PPP has public IP and eth0 has private IP. Is there any way that I can get public ip assigned to eth0? I do not have Static IP, I want to use the public dynamic IP assigned by my ISP to use in eth0 interface.
View 2 Replies View RelatedDirect Internet Via Comcast Hdmi Cable Connect
Apr 15, 2011Is it possible to access the internet directly using the provider's hdmi cable routed through a generic device?
View 3 Replies View Related