Cisco Security :: ASA5520 How To Proceed To Get K9 Software
Feb 26, 2013I have an ASA 5520 K8 with a smartnet contract, how can I proceed to get K9 software so that I will be able to use 3DES/AES encryption key.
View 1 Replies
ADVERTISEMENT
Cisco Security :: Copying Configuration From PIX To ASA5520?
Aug 21, 2012i hav asa5520 i copying configuration from PIX to ASA5520 (7.2) everything working fine bt problem is that after sometime my DMZ interface losing connectivity ...
View 1 Replies View RelatedCisco :: Nexus And 2960g How To Proceed Network Setup
Feb 6, 2012I am having issue while connect the cisco 2960G and nexus 5000, i have attached the network setup. so kinldy check and update how i can proceed further.
View 2 Replies View RelatedCisco VPN :: ASA5520 / L2L VPN Security Level Higher To Lower?
Feb 3, 2011We have an ASA5520 firewall, IOS 8.0(4), running in routed mode with an operational Cisco 2821 router to ASA-5520 L2L IPsec VPN.:All Internet searches explain how to enable a L2L IPsec VPN from the LOWER security-level interface to a HIGHER security-level interface- and this is how our setup is configured and it is operational and working fine.:We now have a need to setup another L2L IPsec VPN tunnel on the same firewall BUT this time traffic will be arriving on the HIGHER security-level interface destination is to a LOWER security-level interface.:Is it possible to enable a L2L IPsec VPN tunnel between a HIGHER security-level interface to a LOWER security-level interface?
View 5 Replies View RelatedCisco Security :: ASA5520 How To Remove Configuration File
Jul 15, 2007I want to put the asa5520 to the factory default please let me know how to do that. how to remove the configuration file from it.
View 5 Replies View RelatedCisco Security :: ASA5520 Replace A Fortigate 310B With Products
Aug 4, 2011i need replace a Fortigate 310B with Cisco products, that is, all Web Filtering, IPS/IDS, AV, so, the question is, what we can use to replace?First, we can use Cisco ASA 5520 right? with CSC Module, so, this for Anti-X, but for IPS? is better router with IPS on IOS? or IPS Sensor? or other Cisco ASA with IPS Module?
View 3 Replies View RelatedCisco Firewall :: Security Context License Requirement - ASA5520
Jan 14, 2013A simple question - I have ASA 5520s and was wondering what license is required to create multiple (more than default 2) security contexts.
The ASA already have ASA 5520 VPN Plus license.
Software Version 8.4(1)
Cisco Security :: ASA5520 Send Traffic To SSM Module / Internet Connection Becomes Slow
Jun 8, 2011I have installed CSC-SSM-10 on cisco ASA 5520.I am facing two problems
1 : When I send traffic from ASA to SSM module then internet connection becomes slow and sometimes internet session disconnected.
2. When I try to manual update then following erros shows please see attachment .
Linksys Wireless Router :: EA6500 Configuration Panel To Proceed With Cloning MAC Address
Jan 13, 2013I am going to replace my Netgear DGND3700v2 router with Linksys EA6500. I hope that the signal strength of this router will be better, particularly for 5GHz.The problem is that I have a cable connection to Internet and my line has MAC address of Netgear assigned by my ISP. I would like to clone this address to EA6500 to test the power of the signal, before making the final decision to replace Netgear.My question is how to do this in off-line mode. I cannot have Internet before cloning.I've been using Internet Explorer with various addresses - 192.168.0.1; 192.168.1.1; myrouter.local; even 192.168.2.1 and some others but couldn't get connected to EA6500. Of course, the original CD suppied with the router does not work, either.Is there any other way to get to router configuration panel to proceed with cloning the MAC address?
View 1 Replies View RelatedCisco Firewall :: ASA5520 - Active / Active Failover In Multiple Security Contexts With Dual ISP?
Jun 1, 2011I have an ASA5520 in location A with an ISP connection and a matching ASA5520 in location B with a separate ISP connection. We have fiber connecting the two locations and vlans passing back and forth so I will be able to configure the failover via a vlan as well as extend the ISP's to each location via vlans. The Active/Active configuration with the multiple security contexts does not seem to be an issue but how is a redundant ISP configured in this mode?We want to have context A using the ASA in location A with ISP1 as the primary and failing over to ISP 2 in locaiton B We also want to have context B using the ASA in location B with ISP 2 as the primary and failing over to ISP1 in location A Would route tracking provide the desired result? Is there a better option?
View 1 Replies View RelatedCisco Firewall :: ASA5520 To ASA5520 Via L2L Tunnel
May 31, 2011Our firewall expert has gone off on long term illness leave and I am trying to pick up the pieces :-(
We have an ASA 5520 (local office) talking to another ASA (remote office) via a VPN Tunnel.
My 1st problem is that I cannot ping from my inside network (local) to the outside interface of my remote ASA.
My 2nd is that I have debug enabled on my rules but am not logging anything.
Cisco Security :: Finding Security Labs For GNS3 Or Packet Tracer?
Dec 19, 2011I'm studying for CCNA Sec exam and looking for any security labs for GNS3 or Packet Tracer.
View 3 Replies View RelatedCisco Security :: Configure 802.1X Security Through ACS 1120 Server And NAC In Layer 2 Inband Virtual Gateway?
Feb 28, 2011My company ordered NAC and ACS 1120 My question is Can i configure 802.1X security through ACS server and NAC in layer 2 Inband Virtual Gateway.for campus switches.Is it the good design to have double security for switch ports. 1st is 802.1X and 2nd is NAC in layer 2 INBAND VG?
View 1 Replies View RelatedCisco Security :: How Many Default Context In ASA 5510 Security Plus Edition
Aug 8, 2006ASA 5510 security plus edition will it support active/active failover. and does it support context with securiyt plsu edition. and how many default context do we get with asa 5510 security plus edition.
View 3 Replies View RelatedCisco VPN :: Asa5520 How To Add Pcs To Vpn
Apr 23, 2012I have configured SSL-clientless vpn on asa5520(8.2-asdm-6.4)It is working.Only problem is how to add pcs to the vpn.That mean like someone need to access pcs via vpn.Servers with url can add without any problem.is there anyway to add pc/servers with ip addresses?
View 2 Replies View RelatedLinksys WRT610N Wireless System With WPA-PSK Security / Security Settings Does Not Match
Mar 29, 2012I have a Linksys WRT610N wireless system with WPA-PSK security and this works fine with several computers but now one computer detects the wireless security as WEP and can thus not connect to the router. I have tried to manually connect to the router with correct security WPA-Personal (TKIP) and correct password but then the computer says "settings saved on this computer for the network do not match the requirements of the network".How can I get the computer to detect the correct security? The computer is running Windows 7 home premium.
View 7 Replies View RelatedSecurity / Firewalls :: FCC Is Investigating Pogo Game Site Because Of Poor Security
Mar 24, 2013Is it true that the FCC is investigating the Pogo game site because of poor security? Is Java the cause of this problem?I'm very leery of getting on the Pogo site because I've been told that my computer could get a virus and crash.
View 1 Replies View RelatedSecurity / Firewalls :: Sonicwall Network Security Appliance - Receiving A Content Blocked Message?
Dec 24, 2011I'm new to IT, and have been put in charge of managing our servers hile my boss is on vacation.We currently have a Sonicwall Network Security Appliance that handles our Firewall/VPN and have web content filtering set in place.I have a user who belongs to 2 CFS policy groups that we have set up. I've double checked with Active Directory, and he is a member of both groups.
This person SHOULD have access to Job searches/ and Restaurants,but receives a "content blocked" message on his browser.It appears to me that the settings in Sonicwall are correct, as well with AD member groups.
Security / Firewalls :: Connecting To A Security-enabled Wireless Network?
Jan 19, 2013I am trying to connect to a Security-enabled wireless netowork. I have the key. My problem is that I can't seem to figure out how to enter it. When I try to connect I open the "view available networks"window. I see the network name and it shows a strong signal (all 5 green bars).
View 3 Replies View RelatedCisco VPN :: For VPN Between ASA5520 And Checkpoint R55
May 16, 2013we are trying to configure the vpn with our provider we are on Asa and the use Checkpoint , vpn seem to be established on phase 1 and phase 2 too.bur when i send ping packets seem to los on tunnel and other side do not see them.Asa is after a onother firewall and outside interface of this asa is nated on this perimeter firewall.
View 5 Replies View RelatedSecurity / Firewalls :: Install Microsoft Security Essential On PC?
Sep 15, 2012I want to install Microsoft Security Essential on my PC, but I am not sure which download I need. One says amd64 and the other is x86. I am using windows xp 32bit.
View 2 Replies View RelatedSecurity / Firewalls :: Security Tools And Techniques For Wireless LAN?
Apr 20, 2013Some security tools and techniques for wireless LAN??
View 1 Replies View RelatedCisco Security :: ASA IOS 8.3 Local CA Security Vulnerability?
Apr 9, 2011I was informed by a co-worker that there is a security vulnerability with the local certificate authority in the ASA running 8.3 code. I've looked through the security advisories and haven't been able to find anything about this. Was this just misquote or am I missing the security advisory release?
View 1 Replies View RelatedCisco Security :: ASA 5505 Security Plus Licensing?
May 24, 2011I have a ASA 5505 that I test with which originally came with the Security Plus license. I recently erased flash and loaded the latest asa841-k8.bin version of IOS along with asdm-642.bin. Everything booted fine and came up as it does when freshly wiped however I noticed that i was now only running a base license. If I issue the sh activiation-key command, I noticed the following messages (full output is at the bottom):
The Running Activation Key is not valid, using default setting
......
This platform has a Base license.
......
Failed to retrieve flash permanent activation key
Did I somehow kill my Security Plus licensing when I did the erase flash? If so how do I recover it?
ciscoasa# sh activation-key
Serial Number: JMXXXXXXHU
Running Permanent Activation Key: 0x00000000 0x00000000 0x00000000 0x00000000 0x00000000
The Running Activation Key is not valid, using default settings:
Licensed features for this platform:
Maximum Physical Interfaces : 8 perpetual
VLANs : 3 DMZ Restricted
Dual ISPs : Disabled perpetual
VLAN Trunk Ports : 0 perpetual
[code]...
This platform has a Base license.Failed to retrieve flash permanent activation key.The flash permanent activation key is the SAME as the running permanent key.
Cisco :: ASA5520 Bandwidth Limitations
Oct 10, 2011I'm trying to use a 5520 to test something but the bandwidth seems pretty low for the product I'm testing over it. Can anyone tell me if there is a bandwidth limitation by default? I'm seeing 1.5mb/s average with spikes to 6mb/s or so. On the ASA5550 I was seeing usage up to 80mb/s.
View 5 Replies View RelatedCisco VPN :: ASA5520 SSL VPN Portal Not Working
Feb 17, 2010I'm trying to setup the SSL VPN portal:When I connect via HTTPS to the ASA5520 outside interface I get the login prompt and after successfully login it takes me directly to the Anyconnect client download (starts Anyconnect immediately) even though in the group policy is configured to not prompt the use to chose the post login and the post login is ste to go to Clientless SSL VPN Portal?
View 7 Replies View RelatedCisco VPN :: SonicWall / ASA5520 VPN Disconnects
Feb 4, 2009We have a several SonicWall TZ 190 establishing VPN tunnels with a ASA5520. Pericodically random VPN tunnels will drop and can not re-establish a connection. In order to re-establish the dropped VPN tunnel, our firewall folks manually drop all VPN tunnels connected to the ASA (they use to physically power cycle the ASA). They claim this is the only way to resolve the problem and since the SonicWall Life Time seconds for Phase 1 and 2 are set to 28800, they reset the tunnels every 8 hours. Additionally, they claim that SonicWall IPSEC is different that Cisco IPSEC which is the main problem. Hence they are requesting a SONICWAll VPN concentrator..
View 4 Replies View RelatedCisco VPN :: ASA5520 Any Way To Set Up Profile To Check PC
Mar 5, 2013I have a Cisco ASA5520 that we are going to use to allow users to connect to our network via the Anyconnect client, I have authentication set up to validate against AD via LDAP, but was wondering if there were any way to set up the profile to check the PC before they log in....we do not want users using their home PCs to attach to our corporate network, only PCs that were issued to them by the company. Nothing is jumping out at me in the config, we are running some fairly old sofware on the boxes (ASA - v8.2(2), Anyconnect - v2.5.3046) I plan on upgrading the Anyconnect to v3.1 but will probably need to keep running the 8.2(2) version on the ASA due to support issues.
View 2 Replies View RelatedCisco Firewall :: Only One Internet IP Can Be Used In Asa5520?
Sep 25, 2011I have a asa5520 with five Internet IP.One for the internet interface and the others are static maped to dmz hosts. It runs rightly until yesterday.Now it will lose the connection to the gateway many times everyday and the dmz hosts can not connect to internet any time. configuration(simplified):
!
interface GigabitEthernet0/0
nameif internet
security-level 0
[Code]....
I called ISP to check,when ISP clear their router's ARP, the asa will lose the connection at the same time and then the ISP's router couldn't learn the ASA's MAC. After I 'clear arp' manually,The ISP's router can learn the ASA's MAC and the connection recovered,but the DMZ's cann't access internet still (of course,There is no problem between DMZ and ASA ,I ping the internet gateway from DMZ host and can not get any reply.).
Cisco VPN :: One ASA5520 With Two Peers Interfaces
Feb 17, 2011I have a location where I have 2 WAN links, but without a dynamic routing protocol in between. I want to implement a kind of hub to 2 spokes VPN. But the spokes will actualy be on one single ASA firewall, each spoke on a different interface. One hub-spoke will be primary, the other one the secondary. When the WAN link for the primary VPN fails the secondary should be started on the hub to the other spoke.
View 1 Replies View RelatedCisco Firewall :: Upgrade 8.2.2 On ASA5520?
Oct 3, 2011We have 2 x ASA5520 and I upgraded this to 8.2.2 last year, I see 8.2.5 and now 8.4 is out. If we are having no issues, is it best just to leave it as it is? I can see a couple of features I may find useful in 8.2.5, but 8.4 seems like a huge jump and a risky one too.
View 1 Replies View RelatedCisco :: RME 4.2 Can't Get Configuration File From ASA5520
Aug 10, 2010I have a problem with RME 4.2 from CWLMS 3.1. I have configured SSH in my asa 5520 device but RME can't get the configuration file. I ran a job to sync archive but i get this message error:
*** Device Details for ASA_5520_VOZ_01 *** Protocol ==> Unknown / Not Applicable Selected Protocols with order ==> Telnet,TFTP,SSH Execution Result: CM0062 Polling ASA_5520_VOZ_01 for changes to configuration. CM00 Polling not supported on
[Code].....
Cisco :: Firewall ASA5520 Is Very Slow
May 8, 2011I have one firewall ASA5520, are very slow
View 3 Replies View Related