I followed a few Youtube videos and replicated another ASA's VPN configuration through ASDM to create the Anyconnect VPN on the ASA 5505.The problem is, after everything checked and triple checked, I still cannot get to https://external_IP. I can post configs if needed, but I really did replicate another ASA almost exactly.An online port scan shows my external IP as "not listening on port 443".
View 6 RepliesI followed a few Youtube videos and replicated another ASA's VPN configuration through ASDM to create the Anyconnect VPN on the ASA 5505.
The problem is, after everything checked and triple checked, I still cannot get to https://external_IP. I can post configs if needed, but I really did replicate another ASA almost exactly.An online port scan shows my external IP as "not listening on port 443".However, when I run on the ASA :
I get the following (external IP changed to 123.123.123.123 for the forums):
Protocol Socket Local Address Foreign Address State
TCP 0004426f 192.168.8.4:22 0.0.0.0:* LISTEN
SSL 0574f7af 123.123.123.123:443 0.0.0.0:* LISTEN
DTLS 0577b0ef 123.123.123.123:443 0.0.0.0:* LISTEN
TCP 06fa8d1f 123.123.123.123:80 0.0.0.0:* LISTEN
SSL 079385bf 192.168.8.4:444 0.0.0.0:* LISTEN
So it does appear to be listening on the external IP on the outside interface correctly.I went ahead and tried the whole "change the ASDM port" as you can see from the inside interface being changed to 444 but management isn't even enabled on the outside interface so I'm not sure why it is acting this way.
The outside interface is plugged into a DSL modem. I don't think this DSL modem has any real intelligence, but I was going to disconnect the ASA and plug my laptop into the outside interface (on the same subnet) and then see if I could reach it. That was the only thing I could think of...that possibly the DSL modem was blocking the inbound traffic.
I bought a pair of SG200-08 switches a month ago and noticed that after a couple of weeks (give or take) the web interface stops responding (today being the 2nd time this happened). I am on v1.0.5.1 of the firmware on both switches. I can ping the switches just fine. I've run a port scan against then showing that port 80 is open. When I browse to either switch using IE9.0 or Chrome (v21) both show page loading however it remains blank - eventually the browser times out. I've tried multiple machines (just in case of port blocking) however always the same result.
To correct this I power cycle the switches and the web interface starts working.On the switching side, both seem to be working as there doesn't isn't any network impact (from what I can tell) however not being able to access the web interface is very irritating, not to mention making me wonder what else isn't working.
i have been facing strange issue on FWSM (6509 switch). we have created a vlan inteface for server farm on fwsm and its stop responding automatically and we need to give shut/ no shut command under that interface to back into normal .
View 11 Replies View RelatedI am having an issue I need to have the outside interface terminate a ssl AnyConnect Client. I have several groups the will login and I need multiple inside interfaces to satisfy my security needs.
I have one group call ombudsman-mhdd and they need to go out interface g0/1.231 and another group called oet-router go out g0/1.232.This works on my 8.2 box but I am having trouble routing traffic out these interfaces.
interface GigabitEthernet0/0
description trunk mplsfe-hub g1/10 - - null
nameif outside
security-level 0
ip address 207.171.92.25 255.255.255.252
!
[code]....
We currently have a setup where users connect to the inside of a firewall using the ipsec client. We are moving them to the anyconnect client but are unable to get it to work, we cannot even get a webvpn page on the inside.
When trying to connect with anyconnect the ASA reports an IKE initiator fail on the inside. and no tcp connection flag. We cannot get any response with Webvpn either I have tried using a different tcp port on webvpn but then the asa denies the traffic even though there are no rules denying.
I have a scenario where there is an ASA5510 configured as follows:
Interface0 = Outside
Interface1 = LAN
Interface2 = DMZ
Interface3 = unused
Running ASA version 8.2[1]
All network operations are fine, as are the IPSEC tunnels to other branch offices, and the incoming SSL VPN accessed via the IP address assigned to the external adapter.
My problem is that I have a device on the DMZ that needs to access the AnyConnect service hosted on the external adapter so that it can access LAN resources. When I try accessing it, I see the following errors appearing in the debug log:
3Dec 03 201212:10:50710003[DMZ client address]51031[AnyConnect ExternalAddress]443TCP access denied by ACL from [DMZ client address]/51031 to DMZ:[AnyConnect ExternalAddress]/443 If you look closely, it suggests an ACL issue from the DMZ client to the external AnyConnect IP address BUT it suggests the Anyconnect IP address is on the DMZ interface.
i have a 1841 cisco router and i recently purchased a 1 port HWIC wan interface card. My problem is that I cannot see the interface in my config file. Is there something i am missing?
View 8 Replies View RelatedI have a Cisco ASA 5505 and I have my internal and external interfaces configured but I currently cannot ping from the inside to an IP Address on the outside. I had this setup and working and I have another set of equirement that I am replacing that is working with my service provider so I know it is a configuration issue. When I ping 4.2.2.2 for example I get:
Destination host unreachable
Do I need to add a static route from my inside interface to my outside interfaces?
: Saved
:
ASA Version 8.2(5)
!
hostname pxasa
[Code].....
I had tried over a year ago to set up wireless in my home and failed miserably.I thought I would retry.It says Im connected but do not have internet access. It says the DNS is not responding.
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:UsersDa>IPCONFIG/ALL
Windows IP Configuration
Host Name . . . . . . . . . . . . : Da-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid[code].....
I'm trying to set up a VPN connection with my Windows 7 machine at home any my Windows XP laptop. The Windows 7 is the server, and my XP is the client. The machine at home is behind a DIR-600 router. I've setup the normal VPN connections at both the machines, and have also forwarded port 1793 on the Windows 7 (following the usual steps: static ip etc). I also exempted the said port from the windows firewall.
View 1 Replies View RelatedI have solved all issues but still i have the same problem.DNS not responding?
View 1 Replies View RelatedIs it possible to set up a WAN interface on a FastEthernet interface of a Cisco 877 Adsl Router ?Due to my ISP, i've to use an external VDSL modem and must connect it to my cisco 877 router (and leave it's adsl interface unused).But i don't know how to set up a wan port, other than the adsl interface itself (dialer0), on my cisco.
View 7 Replies View RelatedWe are having Cisco ASA 5540 having Cisco Adaptive Security Appliance Software Version 8.0(5)23 at certain time of moment daily wer are facing latency and packetdrop wherin when I checked for ASA Interface which gives me " Input Errors" on outside interface ,so can any one tell me what are the causes to get input errors on cisco asa outisde interface.
View 2 Replies View RelatedI have a 1t3/e3 card in a new 2951. When I statred the router, I found no interface corresponding to this module when do "show ip interface brief"
View 3 Replies View RelatedI have Pix 501 firewall and I'm just configuring the device for "Email Server" to allowing POP/SMTP.
Inside Interface Address: 132.147.162.14/255.255.0.0
Outside Interface Address: ISP provided IP address
My question is can my traffic goes from inside interface to outside interface? (because the inside interface address not from 10.0/172./192.168 private address)Also I'm allowing internet from this email server (132.147.162.14) so what my access list to be configured? and what my subnet mask shoud be there?
Pix(config)#access-list outbound permit tcp 132.147.162.14 255.255.0.0 any eq 80
Pix(config)#access-list outbound permit udp 132.147.162.14 255.255.0.0 any eq 53
Pix(config)#access-group outbound in interface inside
I've got a ASA 5550 firewall interface failover issue. (File attached).
when I shut down the inside interface Gi 1/1 of the left firewall(Active firewall), It failed to failover. but when I shut down the Gi 1/12 of the Core 1 switch, The firewall failover very well.
I followed this guide but I was not able to failover. [URL]
how can I configure so that when the Gi 1/1 or Gi 1/0 interface goes down, it can failover ? Code...
Needing to bridge from my wic interface to an ethernet interface on a 2900 series router so that I can pass through the ip address given to the WIC, to my ASA so that I don't have to give my ASA a private range address. (Just like a service provider might do when bringing a T1 with managed router in to my prem)
View 1 Replies View RelatedI am currently having problems accessing outlook live, using MSN Messenger or Facebook when at home. The problems cosist of being unable to load certain pages properly and being unable to connect at all to the MSN network.
View 5 Replies View RelatedI was able to connect this mornin, and suddenly it just didn't work. I checked and it said DNS server isn't responding. tried using the Open DNS 208.67.222.222, 208.67.220.220 But it is still not working and showing the same error.
View 3 Replies View Relatedi'm having a problem with my router. i connect broad band line direct to my router and then i connect router to computer with another cable, wifi router work fine i can connect my wifi device (mobile & tab) but in my pc its not working. line drops in my pc but same time my wifi works fine. i change the cable between router & pc but still not works. so far i understand my internet line & router works fine.
View 1 Replies View RelatedMy desktop computer, I am on my netbook posting this, will not get online and the diagnostic tells me the DNS server is not responding
View 14 Replies View RelatedI have a problem with my internet. Not so long time ago I bought new TOSHIBA laptop with Windows 7. At the start everything was OK but after few days internet connection started struggling. Troubleshoot says that DNS server is not responding.There are a couple others laptops on the same network and it seems that just me have this problem.The problem - Skype, torrents are working OK. The problem is with connection to internet sites via my internet browser. It doesn't matter it's IE, Mozilla or Google Chrome, I have the problem with all of them. Sometimes the problem disappears and everything is working OK but usually I have the problem and can't connect to one or other site.
View 2 Replies View RelatedI've take a lot of measures so far to try to resolve this but I believe I have changed a lot of essential things in the process. I am running Windows 7 and my antivirus software is McAfee. [code]
View 1 Replies View Relatedi have duel boot system with window 7 and ubuntu 12.10i connect to internet through nokia mobile using serial cable. it works fine in ubuntu and used to work fine in window 7 also till last month. but now i am not able to browse internet in window 7. this shows connected but i am not able to open webpages despite using different browsers. network troubleshooting shows "DNS server not responding" error. i have tried ipconfig release ipconfig flush ipconfig renew etc. and resetting dns server address to google dns but to no avail
View 1 Replies View RelatedWhat this error means from a Cisco VPN client when trying to connect to a ASA 5510?
VPN Error
VPN gateway not responding (waiting for Msg 2)
After upgrading our Cisco MSE to 7.4, the appliance does not stay connected to the network. Once the appliance is restarted, layer 3 echoes occur for about 2 minutes and then stop. The only way to get it to respond again, is to restart the appliance. Again, after a few minutes, it stops responding. I've checked the switch, and there is no port security set up on it. I've checked ACL's, and other potential culprits to no avail. The MSE interface is set up, and the device is configured.
View 12 Replies View RelatedI have a Cisco 1841 router equipped with a serial interface and an ISDN BRI interface installed.The router has stopped suddenly responding and no display is beig obtained when trying to access the router through the console port.I have check the router LEDs and they display the following:
SYS PWR - It is showing solid green which means the router is receiving power, and the internal power supply is functional. It is not blinking green as is normally the case when the router is rebooted.
SYS ACT - It is showing solid green. It should normally be blinking green showing that the system is actively transferring packets and monitoring internal activity. CF - It is showing solid green. It should normally be off indicating that the CompactFlash memory card is not being accessed or be blinking green showing that the CompactFlash memory card is being accessed.
I have even replaced the CompactFlash memory with another one and removed the two WICs installed but the router still fails to initialise properly and respond through the console terminal program. how the router can be further troubleshooted or if it can be repaired?
I share a modem and router with my building, and connect to the internet using an ethernet cable which plus right into the wall in my apartment. When I hover over the network/internet icon it tells me that I have a local connection only and can't get online. No changes were made to my computer between it working and not working - I have not installed any new software and the modem+router have not been changed.
When I try ipconfig/release is says it can't perform the operation while the media is disconnected. It also tells me that "an error occurred while releasing interface Loopback Pseudo-Interface 1: The system cannot find the fie specified".
[code]...
i have duel boot system with window 7 and ubuntu 12.10 i connect to internet through nokia mobile using serial cable. it works fine in ubuntu and used to work fine in window 7 also till last month. but now i am not able to browse internet in window 7. this shows connected but i am not able to open webpages despite using different browsers. network troubleshooting shows "DNS server not responding" error. i have tried ipconfig release ipconfig flush ipconfig renew etc. and resetting dns server address to google dns but to no avail.
View 22 Replies View RelatedI have had DSL service for several years from a small, local ISP, that pays Verizon for the use of their lines. On 1/2/2012 in mid-morning I began experiencing lack of connectivity. I noticed that the "link" light on my DSL modem was blinking. I tried turning everything off & starting up again but to no avail. In the morning, I turned everything on again & for about 45 minutes my DSL service was perfect. Then it became intermittent & mostly unavailable.
View 1 Replies View RelatedTech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: AMD Phenom(tm) II X4 925 Processor, AMD64 Family 16 Model 4 Stepping 2
Processor Count: 4
RAM: 8183 Mb
Graphics Card: ATI Radeon HD 4350, 512 Mb
Hard Drives: C: Total - 942176 MB, Free - 888263 MB; D: Total - 11394 MB, Free - 1645 MB;
Motherboard: FOXCONN, ALOE
Antivirus: Norton 360, Updated and Enabled
Farbar Service Scanner Version: 06-08-2012
Ran by Jennifer (administrator) on 11-08-2012 at 09:25:16
Running from "C:UsersJenniferDownloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
[code].....
Hardware:
Lenovo Ideapad y560, windows 7
Medialink wifi router, MODEL: mwn-wapr150n
intel wifi link 1000 BGN
I'm trying to connect to a Medialink wifi router from this laptop but after finding and connecting to it, it shows as No Internet Access. When I try to access a web page, it says DNS Not Responding. I have been able to access it before from this laptop. I am currently able to access this particular wifi spot from other devices. I am unsure if this laptop is able to access other wifi spots besides my own.
Things began to act weird after I tried changing the network name from the Network and Sharing Center by clicking on the 'House' icon, changing the network name to something besides the given router name, and pressing ok.
Since then, I have reset the router. I have checked to make sure DNS is automatically retrieved. When that didn't work, I gave it a public DNS to pull from, but that didn't work so I reverted to Auto DNS. I have enabled netbios over TCP/IP. I have flushed all caches. Nothing.
I don't have McAfee installed, only MSE.
My IPCONFIG /ALL is below:
Microsoft Windows [Version 6.1.7601]
Windows IP Configuration
[Code]......