Cisco Security :: ASDM 6.3 View Changes Before Applying?
Jan 27, 2011Is there a way to view changes made in ASDM before hitting apply button?
View 2 Replies
ADVERTISEMENT
Cisco Firewall :: Unable To View PIX515e Via ASDM?
May 20, 2012I am trying to veiw my PIX515e via the ASDM, but I am unable to...Can you review my config and make sure I have everything setup the way it is supposed to?
PIX Version 8.0(4)32
!
hostname pixfirewall
[Code].....
Security / Firewalls :: Is SSL For E-mail Accounts Worth Applying
Dec 23, 2011Verizon recently sent an e-mail to a friend of mine suggesting that she modify the server settings in her Windows Mail (her OS is Vista -- ugh!) to use SSL. It's an easy change (have to change the POP3 port to 995 and the SMTP port to 465, and choose SSL/TLS for encryption).I know nothing about encryption protocols and what advantages they provide over unencrypted e-mail. For example, earlier this week, she received a hacker e-mail (the infamous "shipping confirmation" that appears to come from Amazon.com, but all the links open "redpouch.com", which immediately tries to upload malware to your computer). She (and I) have no idea how the hacker got her e-mail address -- or those of a dozen other addressees all of whom have the domain "verizon.net".It would appear the hacker got into Verizon's server and stole the addresses. Would using SSL make that impossible to do? If not, what extra security does it provide?
View 5 Replies View RelatedCisco Firewall :: ASA5520 - Can't View ACL Count Details Using ASDM
Feb 9, 2012We are running a ASA5520 with system image of "disk0:/asa843-k8.bin". I'm also running ASDM ver: 6.4(7)So my question is while I'm in the ASDM on the configuration of the firewall, I'm looking at the Access Rules. When I do a show log on any of the rules that have hit counts on them, it opens up a Real-Time Log Viewer but I don't see any information. It's not showing anything, nothing appears, it just sit's there like it's waiting but no data is coming. Even though if I go back out to all the rules, I can see the hit count incrementing. The same thing happens no matter which rule I pick with hit counts on them.
View 1 Replies View RelatedCisco Firewall :: ASA 5500 / ASDM - View Historical Metrics In Graph Form For Traffic Overview
Sep 25, 2011Running an ASA 5500, and using ASDM to connect. I need to view the historical metrics in graph form for traffic overview, that is shown on the firewall dashboard. I have enabled historical data, but all I see the 5 minute intervals.
View 4 Replies View RelatedView Current Network Security Key?
Apr 24, 2011my laptop is conneted to the internet everything works,is there a way to show what the 8 characters are?(win xp)......for instance with win 7 there is simply a box to check that says SHOW CHARACTERS
View 5 Replies View RelatedView Security Camera's Remotely?
Jan 26, 2011I have an ISIS TFS1612 security camera system at my business. I'm looking to view it remotely. But, I can't seem to get it working. I have forwarded all ports that it uses. As well as set up a static external ip address. The modem I have is an Actiontec Q1000 which also acts like my router. There are other things connected to the modem.
View 5 Replies View RelatedSecurity / Firewalls :: How To Safely View Attachments
Sep 11, 2012I am receiving email with attachments from friends who could be more secure.I had a situation where their email was being intercepted and another time when they were forwarding adverts.Their knowledge is even less than mine when it comes to email. Is there a way I can move email attachments received by Thunderbird 10.0.2 to a safe place and read it as text only and not have it turn into a java executable or something?Also what is a good way to read such text files?
View 1 Replies View RelatedCisco Security :: ASA 5510 - ASDM Software Won't Load
May 26, 2011I've tried 3 different machines including a server.
Basically when I try to access my ASA 5510 with the ASDM software the software never loads. So I have tried to access it through the management port https://192.168.1.2 and installed the software. The software starts up, I enter the password and it connects and loads to 100% but doesn't go beyond that point. I then try the java applet, and it as well loads up to 100% and says "Please wait, the main is coming up."
I have http server enabled, and asdm image is pointed correctly
As I said, I've tried this on two Windows XP machines and a machine running Server 2008.
I can connect through CLI all day and all night, but I'd rather (read feel much safer) configuring it through ASDM.
Here is some system version info
Cisco Adaptive Security Appliance Software Version 7.0(8)
Device Manager Version 5.0(8)
Compiled on Sat 31-May-08 23:48 by builders
System image file is "disk0:/asa708-k8.bin"
Cisco Security :: Software Updates In ASDM On ASA 5505
Mar 6, 2011When I run the Upgrade software from Cisoc.com Wizard in ASDM i get this error:
You are not authorized to download encrypted software. Please register your self for this service.
CRYPTO_REQUEST_URL
Cisco Security :: ASDM 5.2 Command Privilege Level For Vpns
Sep 21, 2011We have an ADSM (version 5.2(3) ) . In ASA ( version 7.2(3)) we are working with routing, access restriction and configuring IPSEC vpn with integration to our AD. We need to get two diferent profiles: one for networking administrators, who are going to manage routing, acls and have the root for ASA, and the other profile is going to be for the vpn administrators. As I read from the ASDM 6.0 user guide is posible define command privilege level. So do you consider posible to define a particular level for all the command related with ipsec vpn (Create, Modify and Delete) and asociate that particular level with the user for vpn administration.
View 1 Replies View RelatedCisco Security :: ASDM 6.4 Getting NAT Communications To Work / Unable To Make Connection Remotely
Aug 23, 2012I have gone through the docs in creating a static NAT. I have gone into firewall/NAT Rules and set the internal / external entries, set access rules for the various services. However, I am unable to make a connection remotely. Somewhere along the line, I must be missing a command or something.
ASA ver: 8.4(4)
ASDM ver: 6.4(9)
Cisco Security :: ASA 5510 - ASDM Fails To Load On Mac OSX 10.7 Running Java Version 1.6.0_33
Jun 24, 2012I have an ASA 5510 running ASDM 6.4(9) and Cisco Adaptive Security Appliance Software Version 8.4(4)1.I am trying to configure for the first time and I am accessing the ASA via its Management Interface.I am successfully able to connect to the device and get to the Cisco ASDM 6.4(9) page.When I try to run the startup wizard, a couple of prompts displays up to the point where the java applet runs and aks me to enter my IP, username and password.As it is a new system, password and username is blank so I enter and I get a message saying "loading software from cache" which later changes to "software Update completed" and then nothing happens.I am running MacOSX 10.7 Lion, Java version 1.6.0_33.I did try and run this on a Windows system and i was able to load the interface.
View 2 Replies View RelatedCisco Security :: ASA-5540 / UI - Send Command ASDM Location (network Object IP Address) To Device
Dec 17, 2007When ever I create a network object in ASDM 6.0(3) the UI also wants to send the command 'asdm location (network object IP address)' to the device.What is the purpose of 'asdm locaction ....'? Is it telling the ASA-5540 that the IP address is allowed to connect to the device using ASDM?If that is the case why does 'asdm location xxx.xxx.xxx.xxx'get denerated for every network object I create?
View 3 Replies View RelatedD-Link D-ViewCam :: 3.3 / Setup 4 Cameras To View With Remote Live View?
Apr 12, 2013I am trying to setup 4 cameras to view with remote live view. I set up my server with IP addresses of 192.168.1.80 .... 85. The screen has only the option for 1 video channel. I have seen on-line screen shots that have options for channel 1 through 8. I want to assign each camera to a different channel so I will be able to use remote live view to show all 4 cameras at the same time. I can only show one at a time. Do I need a different version than 3.3 or some obscure windows 7 setting?
View 5 Replies View RelatedCisco Firewall :: ASA 5520 With 8.04 And ASDM 6.1(5) Global Not Showing In ASDM
Apr 26, 2011nat global entry not showing up in ASDM but it does via CLI see blow, it's a policy NAT.
nat (inside) 5 access-list inside_nat_outbound_4
global (outside) 5 ************-OUTSIDE netmask 255.0.0.0
Global 5 doesnt show in ASDM 6.1 (5) the globals only go up to 3
Cisco WAN :: Applying Route-map To 881 Router Interfaces
Oct 11, 2012Customer has three 881 routers. FE0 connects to their WAN, FE4 connects to their LANs. Two VLANs are configured on FE4. Class-maps and Policy-map created to detect voice traffic:
class-map match-any VoIP-RTP-Trust
match ip dscp ef
class-map match-any VoIP-Control-Trust
[Code]....
Cisco WAN :: 1941 Router ATM Interface Went Down While Applying QoS?
Sep 28, 2011c1900-universalk9-mz.150-1.M4.3
-------------------------------------------------
Device# PID SN
-------------------------------------------------
*0 CISCO1941/K9 FCZ1510C50V
Technology Package License Information for Module:'c1900'
----------------------------------------------------------------
Technology Technology-package Technology-package
Current Type Next reboot
[code].....
Cisco :: 3500 - WLC QoS Profiles Not Applying Egress
Sep 8, 2011In regards to QoS profiles on the WLC. I have applied a profile to a newly created WLAN and set the Per User Bandwidth to 512k and it seems to be kicking in on the ingress only, this is supposed to work ingress AND egress or is it just designed to work one way? I have a 4402-25 with Cisco 3500 AP's and am running the 7.0.98 code. If it is designed to work one way only is there a different way to apply it ingress and egress simultaneously off the WLC?
View 3 Replies View RelatedCisco Switching/Routing :: 3560 - PBR Not Applying To SVI
May 12, 2013We have two L3 3560's. One 3560 has an upstream MPLS router. The other 3560 has an upstream backup VPN router. Both of these 3560's are L3 switches with IP routing enabled. I created a PBR on both so that specific traffic routes through the MPLS router, while other traffic routes over the backup VPN router. I'm trying to apply the PBR to the SVI's, on each switch. However, when I do a "sh run", the PBR does not appear under either SVI. I've enabled the SDM Routing template, made sure that ip routing was enabled, and even verified that the IOS has the capability. Not sure what else to check for.
View 8 Replies View RelatedCisco AAA/Identity/Nac :: Applying A Patch To ACS 1121
Jun 3, 2012I have an issue with applying a patch to an ACS 1121 appliance running version 5.2.0.26. I have 5 units that needed updating and the first one is the unit with the problem. The subsequent ones updated with no issues.
When I do a show version the 5.2.0.26.10 does not show. When I try to do a reinstall I get back patch all ready exists. When I try to do an uninstall I get back patch does not exist.
Is there a command can wipe out patch 10, so I can start over? The CLI factory-reset only wipes the web configuration not the running-config or IOS.
Cisco WAN :: Switch 4948 Reboot After Applying Route-map?
Dec 11, 2011I'm trying to apply the following policy route in my switch 4948, but it suddenly crash. Is anything wrong in my commands? The switch is rebooting with an error:
System returned to ROM by abort at PC 0x0
My commands are:
access-lists 7 permit 10.140.22.0 0.0.0.255
access-list 177 permit ip 10.140.22.0 0.0.0.255 100.220.24.0 0.0.0.255
access-list 177 permit ip 10.140.22.0 0.0.0.255 100.216.36.0 0.0.0.255
access-list 177 permit ip 10.140.22.0 0.0.0.255 100.216.38.0 0.0.0.255
[Code]......
Cisco WAN :: 1921 / 2801 - Applying Policy-map To Two Interfaces
Feb 19, 2013Am applying a policy map to gig0/0interface vlan xIf i apply to either one only it is ok but if i apply it to the other interface it says ''configuration fail''.Am not also given the option to apply it to a particular interface as the one below
service-policy QoS_policy interface inside
Routers 1921
2801
Cisco WAN :: Applying Rate-limit To Bridge On 1841
Sep 22, 20111841 - IPBASE 12.4.7d
We provide internet access for a number of clients sitting on our WAN, at present they have un-restricted access to the full bandwidth of our 1Gb internet pipe. As they are only paying for a proportion of that we want to set a Mbps limit on the clients, and idealy the device should be transparent between our router and the clients.
I have been trying to set up rate limits on a bridge on our 1841.
#
bridge 1 protocol ieee
bridge 1 route ip
bridge 1 bridge ip
[Code].....
I have tried many combinations but can't get this to limit the traffic, the client still draws as much as they can.
Does rate limit work on bridged interfaces? or am I going to have to try it routed instead?
Cisco Firewall :: ASA 5585x Running 8.4 - Applying ACL Globally
May 4, 2011I will be supporting a new ASA 5585X running 8.4 and I was wondering if it's possible to apply an ACL globally instead of it as an access group that is applied to a specific interface as in or out ... below are the interfaces and ACl.
View 2 Replies View RelatedCisco Firewall :: ASA 5510 - Response Is Very Slow While Applying ACL
Nov 27, 2012I am managing a firewall over remotely in my LAN itself. I started a continous ping to the Firewall IP and the response is less than 1 ms.
While applying some access control list to the firewall via putty ...Suddenly the latency is going hing and it is hitting xxxx ms. And also the acl are getting pasted on the screen by word by word. Sometimes i used to get some RTO for the Firewall IP Address inth eping response.
find the Firewall Version:
Cisco ASA 5510
Version : 7.2
Having more than 600 ACL's.
Cisco WAN :: 7206VXR / Applying CBWFQ On Ethernet Sub-interface
May 6, 2012i have 7206VXR with trunk interface toward customers, now i'm trying to configure CBWFQ on one of the sub-interfaces for specific customer,while trying to apply parent policy which includes child policy i'm getting the following message:Must remove traffic-shape configuration first.
here is the configured policy:
ip access-list extended ACL_TEST_SRV
permit ip any host 192.168.10.1
permit ip host 192.168.10.1 any
!
class-map CM_TEST_SRV
match access-group name ACL_TEST_SRV
[code]....
Sharing :: Applying System Images Remotely?
Mar 28, 2013I have tried to apply system image(present on local system )to a remote system using file sharing with imagex.exe , but it dint work.
View 2 Replies View RelatedCisco Application Networking :: Int827 / Applying ACE Connection Parameter Map?
Oct 24, 2011How do I apply the connection parameter map in a configuration like this to the service policy int827? Do I need to define the traffic? Can I specify only one source destination flow to apply the set tcp half-closed TCP normalization against?
policy-map type loadbalance first-match wss-1100-l7slb
class class-default
sticky-serverfarm sticky-srcip-1100
policy-map type loadbalance first-match wss-1101-l7slb
class class-default
sticky-serverfarm sticky-srcip-1101
[code].....
Cisco Switching/Routing :: (10.10.50.0 / 24) - After Applying ACL / Unable To Hit Internal Web Server
Apr 7, 2013This isn't a big deal as the rest of the ACL works fine, but this is an annoynace since the web auth redirects to our company website (internal for now) after successful login.We have a Cisco WLC that provides access to our production and guest wireless environments. The guest environment of course is in a separate vlan (10.10.50.0/24). So I created this ACL:
access-list 107 permit udp any host 10.10.2.13 eq bootpc <----internal DHCP server
access-list 107 permit udp any host 10.10.2.13 eq bootps
access-list 107 deny ip any 10.10.0.0 0.0.255.255 <---all internal networks
access-list 107 deny ip any 172.28.16.0 0.0.0.255 <----DR Network
access-list 107 permit ip any any
int vlan 50
Desc "Guest wireless network"
ip access-group 107 in
This ACL basically gives the wireless guests access to an internal DHCP server and full access to the internet. For the 10.10.50.0/24 scope, the DHCP server assigns Internet DNS servers and my rationale is that wireless clients would access it via the external IP address but I suppose it doesn't work quite like that with the website being behind the same router as the client machines.
Cisco Firewall :: ASA 5520 - Failover In Off State After Applying New License
Mar 24, 2013We apply a new anyconnect mobile license to our primary asa 5520 and the failover feature went into an off state. WE have now applied a second purchased anyconnect mobile to our secondary asa but the failover is still inactive/off.
bcoh1fw50# sh failover state
State Last Failure Reason Date/Time
This host - Primary
Disabled Ifc Failure 14:43:21 EST Jan 30 2013
[Code].....
Cisco Firewall :: ASA5510 - Applying Static Command / Not Found Error
Apr 3, 2011I have Cisco ASA5510 OS version 8.4(1), when i try to apply static command, this command is not found, the NAT issues used nat(inside,outside).
So why i can't found this command ?
Cisco WAN :: 2811 Remove Access-list Applying To Inbound Traffic
Dec 25, 2012I have been trying to figure out a NAT issue on my 2811 and the inspect engine.I have 'ip inspect FW out' on my outside interface. If I turn it off, I also have to remove the access-list applying to inbound traffic on that same interface. Why is that? This whole thing centered around SIP registrations from devices on my LAN to my provider. The provieder is showing that I am registering from a high end port (1024 or something crazy). He said that it sounds like some type of SIP ALG or something on my router. For the life of me, I can't figure out what would be causing it. I am just using a standard route-map that points to the outside interface using 'overload'.
View 6 Replies View Related