Cisco VPN :: 5520 Blocking Smart Devices From Using VPN
Jan 11, 2012
I am looking for a solution to block smart devices from connecting to our network via VPN. Our current VPN solution is ASA5520 and we are using Cisco ACS for user authentication. We use Cisco VPN client only, no anyconnect or SSL VPN. Management is looking for a way we can stop smart devices from using VPN clients to connect and only allow laptops/desktops to connect. Any way we can do this via ACS or another method?
I've noticed that my E4200v2 Smart-Wifi cloud doesn't show all the devices that are connected to my router.To test, last night we turned on EVERYTHING....4 iPod Touches, 2 Xbox's, 1 Blu-ray player connected to Netflix, 1 Directly receiver, 4 laptops,1 desktop,1 iPhone, and made sure all of them were connected to the Wi-fi and actually streaming / downloading/playing something the Smart WiFi only recognized about half of them as being connected. I rebooted the router and it picked up a few more but never accounted for all the devices connected.
If you can't account for all the devices connected to your network, setting-up up reliable Parental Controls is almost impossible.Very disappointed and about ready to start looking for another brand of router. Sad, as I've been with Cisco/Linksys for over a decade and been very satisfied in the past.
I'm trying to install a Gateway in Red Hat Linux to Cisco Smart Call Home Service, and reading about this in google, i find this info:Smart Call Home on the ASA This is much more simply to configure and operate.I want to know what solution is more recomended and why.
I've configured a Cisco ASA5520, i can access to internet and other applications in my office but when i sent an email from inside to outside and vis-versa, i can't receive emails in both side
I am new at ASA 5520 and CSC module (version 6.3). I would like to know what configurations are possible for my network users if i use the CSC trend micro blocking using IP address or AD users, I know that i could select users/groups from the windows AD or select the IP addresses that i want to use for blocking or permit HTTP traffic (URL, etc).
My question is on the client side, how the CSC knows what AD users is the one that is requesting certain HTTP pages, or if i user a proxy server, i lose the IP/users options on the CSC??..or i could use authentication options on the proxy for example?.
I have been looking information about this but the manuals only explain the configuration options that i could configure on the CSC Trend Micro page, but it doesn't say which network environment i could use or need.
How to block LogMeIn and GoToMyPC? We are using an ASA 5520. We mainly want to prevent people coming into our network using those applications. Also, our helpdesk uses LogMeIn Rescue and would need to allow that for them.
Can we block websites and messenger on Cisco ASA 5520 running code 8.2 , we are looking to block facebook.com , yahoo.com , twitter.com , msn messenger, yahoo messenger, google talk and messenger. All Internet traffic from users are passing via the firewall and for 20 users on this site we do not have microsoft ISA or bluecoat.
My internet link is connected on Internet Router & below downwards Cisco ASA 5520 is connected.ASA is connected with core switch cisco 4510 on downwards. our web based mail [URL] is hosted outside.
Lets suppose ISP pool is 4.4.4.0/28.suppose owa server is Static natted on ASA with 4.4.4.4. my machine traffic is going to internet with same ISP with PAT on Cisco ASA & internet is working on my machine. if i want to access {URL} or ip base for mail access, its not working & also it is not pinging. i suppose to ASA is blocking for returning traffic.
is there any way to traffic will go via same Firewall & comeback on same firewall port?
I got a VPN request form from one of our partners. On my side I have one ASA 5520 running 8.0(3) On their form, It says that their endpoints are two boxes, sitting on different cities, It also says that there is only one encryption domain, (actually just one IP) that I need to speficy on the VPN setting. It looks like they mean that you could access the same encryption domain from any of the two Boxes in different cities. This is strange to me, since every time I have set up VPN before, each endpoint has their own encryption domains.I never seen two enpoints with the same encryption domain behind, so Im confused wether it might be a mistake on their part, or this is expected.
I use a cisco asa 5520 to terminate multiple site to site VPNs. Due to the configuration of a parteners network, i have had to install 2 routers into this parteners network, i have been supplied static private IP addresses for each router each router has a unidue LAN subnet which is the VPN's protected network.The partener use's PAT with only one public facing IP address.The VPNs are initiated from the parteners network using an IP sla ping.
Upon installing my first VPN router in the partenrs network, once NAT-T was enabled on the local ASA the VPN started working fine. After installing the second VPN router i tried installing the new config on to the ASA but via CSM, the ASA complains that it can not have 2 VPN's with the same peer address configured.
Currently my home network is being switched via TrendNet TEGs80G unmanaged gig switches. I have been using them for about a year now with no issues. As my home network becomes more advanced, I recently just added a Cisco ASA5505, I am thinking about swapping those unmanaged devices, 4 of them, to managed. I was looking at the Cisco SG300-10 for upstairs, and a 16 port variant for my main core. These devices do not support full Cisco IOS cli, but they are manageable with a rich feature set nonetheless. My question is, should I swap the unmanaged devices with the more expensive Cisco devices, or just keep what works and save the money until I really need to spend it. As previously stated, my home LAN works just fine as it is, however my WiFi, NTV550s, server and workstations are all on the same network. Probably not the most secure but it is what it is without VLAN support.
I have installed my new E4200 and it works beautifully. I have several wirelss adapters and a few wired connections through powerline adapters. I also have a second VPN router attached to the 4200.I can see the wireless connected devices with the associated IP addresses. If I plug a laptop directly into the Cisco, I can of course see it.However, I can see none of the devices attatched to the powerline devices? I have a securty cam connected via the powerline and want to know the IP address. I checked with cisco technical support via chat and they said it is impossible. I have used 2 previous routers with the same configuration and can see all devices.
All of a sudden my laptop, android phone and blu ray player (all wireless devices) can't communicate with my wired devices (marantz receiver and samsung tv). Everything still connects to the internet independently but i can't for instance play music from my wireless laptop to my wired marantz receiver. I had no trouble with this last week and didn't change anything (that I'm aware of) I did get Verizon to switch out my router but it didn't solve anything. My wife's computer also cannot connect to wired devices. Lastly, if I connect my laptop with via ethernet cable it sees wired devices fine. I tried shutting off windows firewall but didn't work. I have no other firewall/virus software installed. I can ping to all devices (wired and wireless) from my laptop.
I've just bought a new Samsung Smart TV but I'm having some trouble connecting to the wireless network. I have my SSID hidden, so had to enter the SSID + password manually but the TV came up with a message saying it could not connect. I have repeated this multiple times and none have worked at all. I have also tried pushing that little button on the side of the router (can't remember what its called but it lets you connect automatically to the network within a certain time window), and when this happened the TV began connecting, the network SSID showed up, but then a few seconds later it failed.I know the connection is fine as if I hold another wireless device (laptop, phone, iPod) where the TV is sitting they can connect and use the internet just fine.
I have an Apple time capsule and Samsung Smart TV. I set up the wireless connection, checked the status on the TV, connected. When I try to open something in the Smart TV, it says I'm not connected.
I have a PC running Windows 7, with wifi dongle. I connect to internet in this PC using my Android phone as wifi hotspot (Samsung Galaxy s2). I want to share this internet from PC to my Sony KDL 40 EX 520 smart TV, may be using cross over cable. I do not have any router or wifi dongle in my TV. I am unable to do this with my limited knowledge.
I have implemented a Clientless SSL VPN solution with Smart-Tunnel feature on Cisco ASA 5520, software 8.4(4)1.I have been successful in making Bookmarks which employ Smart-Tunnel feature to avoid content rewritting (if any). And in reality it works fine with some links. However there are some links to an Oracle portal, it doesn't work.I was able to log into the Oracle portal with its username/password. However when i click into a button of the drop-down menu, nothing happens while normally there should be a box appearing. The Oracle portal runs with some Java stuffs which i don't really know as i am not a programming engineer anyway.
I'm trying to network my Windows 8 media player and a samsung Smart TV... My computer is running a USB adapter for wireless, and I have just plugged in a Wireless extender. The TV doesn't last long before it losses the connection to the computer.
i have recently purchased samsung smart tv 8 series, but when i try connecting it to internet by lan/ wan it says connected to router but not able to connect to internet contact your isp. though sometimes it connects and then goes to the previous status in short time. i am using leoxsys 54 g-dl 54madsl2+router and i have bsnl ul750 plan.both samsung and bsnl tell its not problem on their side. i am able to access internet on other devices through the same.
I have a NAS (DLink) connected to my router, and my samsung smart TV. I currently use a Boxee Box for the family in another room, and it works great. However, I now want to be able to watch the movies (.mkv's) stored on my NAS, on my smart TV in my room. I want to be able to do so without leaving my PC on. The TV uses a Samsung 'dongle' to connect to my WiFi.
I have just bought a new Samsung Smart TV. Our wireless signal doesn't reach the room where the TV is so we have run a Cat 5e cable from my router to the tv. When I tell the tv to connect to the internet it turns off the receive, send and online lights on my Motorola SBG900 router. Sometimes,however it does connect, but this happens very rarely. I checked to see if it was a problem with the firewall settings but we have the firewall switched off in the router. When I connect any random laptop up to this same ethernet cable it accesses the internet no troubles.
I'm testing the Smart Install Feature with LMS and want to use LMS as the TFTP Server. The SI Director Wizzard seems to push the wrong configuration to the Director, since it deploys a TFTP configuration with 127.0.0.1 to the switch:
#MODE_CONFIG vstack director 192.168.1.236 vstack basic
I have asa 5505 configured with smart tunnel for mstsc.exe only. It work fine only if I use IP address of Terminal Server(192.168.1.1 for example) in Terminal Client(mstsc). But it does not not work if I try to use fqdn of Terminal Server (servername.domain.name for example). Is it possible to use mstsc.exe with smart tunnel with FQDN of Terminal Server?
i`ve setup smart tunnel with different applications. (mstsc.exe, putty.exe). This works fine. I`ve now tried to add the vSphere client appliaction (VpxClient.exe). But i don`t get it working.
we have 100 Cisco 881 routers in our network and they all work fine to Linksys, 3Com, etc switches. The problem we have encountered is interfacing to Netgear switches. Netgear switches use autosensing on their ports and it does not seem to be compatible with MDIX autosensing on the Cisco 881 4 port LAN hub that is standard on the 881 router. Would a cross over cable resolve the problem? Since both run autosensing MDIX they never synch - so likely a cross over would not do much. I see this with all types of Netgear smartswitches. If you put a small switch between the Netgear switch and the 881 Cisco router everything works fine except for getting port 9000 traffic through.
I have a situation where My 6513 chassis is covered by smart-net as are most of my line cards but my Supervisors - SUP2 is End of life - end of support - What will happen if i need config help - or a hardware issue with the supervisor ? anyone run into this ? - Yes I know you buy support on the chassis not the line card and If you buy support the whole chasis is covered.
I am trying to follow the steps to type in the 192.168.1.1 but all the username and passwords arent working for me.. How can I get my wireless to connect to my smart phone.
I'm currently living in an apartment on my school's campus and I'm using their network for all my internet needs and such.One of my roommates recently bought a new Samsung Smart TV Model:PN59D8000F.The wireless here sucks so we've been hooking the ethernet up to the tv for internet access.It was working fine at first, but then all options on the tv requiring a network shut down. Now, when we first arrive at school our laptops are put into a remediation mode to make sure we have virus protection and all that good stuff, and I believe that might be what is happening with the tv's internet access.Not exactly sure,
TL;DR Tv is capable for internet access but network wont let it connect
