Cisco VPN :: 5520 - Getting Unauthorized Connection Mechanism

Jun 12, 2012

I have a Cisco 5520 cluster and Cisco Anyconnect Secure Mobility Client 3.0.5080. I eventually want to connact by means of a Smard Card and I was able to connect a view weeks ago. Now I am hastled by the error Logon denied, unauthorized connection mechanism, contact your administrator. Well that's me and a do not know anymore where to look on the Asa. I thought it had something to do with the authentication method, but AAA (AD or Local), nor cetificates is now working.
 
Cisco's solution...:

Error: "Login Denied , unauthorized connection mechanism , contact your administrator" 

AnyConnect clients are failing to connect to a Cisco ASA. The error in the AnyConnect window is "Login Denied , unauthorized connection mechanism , contact your administrator".

ADVERTISEMENT

What Is The By-pass Mechanism Used In Ring Topology

Feb 2, 2012

the by-pass mechanism used to isolate the fault if any link fail.

View 3 Replies View Related

Broadband :: PC Access By Unauthorized Persons

Jul 1, 2011

some people are accessing my computer from another place how can i give protection to my computer?

View 2 Replies View Related

See Unauthorized Dhcp Servers In Network?

Apr 20, 2011

how can i see unauthorized dhcp servers in my network

View 1 Replies View Related

Cisco Switches :: SG200-08 - 802.1x Unauthorized Access / MAC-authentication

Jun 14, 2011

I use 802.1x to authenticate the company-network devices - authentication works fine. I do not use dynamic V LAN --> static V LAN-config on 802.1x ports --> authenticated devices have access to the network.

Is it possible to use a guest-V LAN? un authenticated devices should connect to an other v lan than authenticated devices.
 
One more question: Is MAC-authentication also possible?
 
Switch: SLM2008T V01
Firmware is: 1.0.1.0

View 1 Replies View Related

Routers / Switches :: How To Block Unauthorized User

Jul 18, 2011

i have distributed my internet through lan by router .but i think that, that user whom i have gave my net is forwarding to other users too through hub.

View 1 Replies View Related

Wireless :: Typing 192.168.0.1 And Webpage Says HTTP 401 Unauthorized

Dec 17, 2011

192.168.0.1 "HTTP 401 unauthorized access: Authorization is required to access the configuration server. You must enter the correct username and/or password."I am trying to set up my Netgear wireless router. I have my username and password, but never get the chance to type it in. My Default Gateway is set to 192.168.0.1, but when I type it in the web address, I get the HTTP 401 error message above. I can access the internet through LAN cable now, but would like to get wireless set up to do so..

Windows IP Configuration Host Name . . . . . . . . . . . . : User-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid

[Code]....

View 1 Replies View Related

Wireless :: Prevent Unauthorized Access With Window XP?

Aug 3, 2011

I am using wire less internet in a public space with my personnel lap top, my question is how to stop unauthorized access to my lap top desk top, drives and other files.

View 1 Replies View Related

Home Network :: Unauthorized Name And Password Change?

Nov 1, 2012

In short, I had the following problem in the past but it solved itself when people physically left the area. Now they are back, the problem is occurring and this time I have as many router settings as I can find to maybe aid in the solution.This is the problem:We have a wireless network where the physical equipment is not available to users and yet, the local network name and password continues to be changed wirelessly FROM say, "ABC network" with network password "ABC secret password" to "Jimmy's Network" and network password "some new string of letters and numbers". (we know who Jimmy is but will not approach him until we learn if this situation is inadvertent on his part or more purposeful, which we doubt as of now)Cisco Lynksys Wireless-N Home Router WRT120N[CODE]

View 1 Replies View Related

Change Password To Prevent Unauthorized Access By Other People?

Feb 15, 2012

How do I change my password to prevent unauthorized access by other people?

View 2 Replies View Related

How To Display Custom Page For Unauthorized Website Access

Feb 12, 2012

We have blocked some sites in router which our user cannot access and it gets them default browser message "pages cannot be displayed". But I want to display pages like "You are trying to access unauthorized website" or something like that when they try to open such websites.

View 1 Replies View Related

Cisco Switching/Routing :: 3750 - How To Block Unauthorized DHCP SOHO Router

Jan 20, 2012

If it's possible, how do you protect/block a unauthorized DHCP SOHO router with NAT form a Cisco 3750?

View 16 Replies View Related

Cisco AAA/Identity/Nac :: 6509 - Detect And Block Unauthorized Devices / Users In Network

Sep 25, 2012

we have Cisco 6509 as a access switch in our network. Each user has an IP phone and a computer. we are going to implement 802.1X for end users by next month. I need to check all the users activity in the network like if someone plug an access point to the network or a router.I just checked Cisco NAC and how to detect those activities on the network.
 
I need to get more details on Cisco NAC or other products for that purpose. also what is the difference between Cisco NAC and application like Microsoft TMG?
 
is it agent less or I have to install something on computers? is it working as a default router for users computers?

View 1 Replies View Related

Home Network :: Unauthorized Network Name And Password Change?

May 12, 2012

Simply put, a wireless network was set up with a network name and password in a senior community of primarily beginner users. Recently the name and password became changed to that of a community member named, let's say, "Joe". After addressing the router several times to change things back - only to find that the network name reverted to Joe - I changed the router password from admin to a unique pw and I confirmed that Remote Management was off. Next day... it was Joe again

View 3 Replies View Related

Cisco :: Slow Connection With ASA 5520?

Oct 16, 2012

I have a really poor internet connection on ASA 5520 after creating a Redundant Interface with interfaces 2 and 3. As you can see, something is really weird:

Interface GigabitEthernet0/1 "", is up, line protocol is up
Hardware is i82546GB rev03, BW 1000 Mbps, DLY 10 usec
Auto-Duplex(Full-duplex), Auto-Speed(1000 Mbps)

[Code]....

View 9 Replies View Related

Cisco VPN :: ASA 5520 AnyConnect Deployment Of Connection

Oct 15, 2012

We are currently using Cisco VPN Client.  I'm looking to migrate to Cisco Any Connect.  Our ASA 5520 has 750 IPSec and 2 SSL license.  I also have approximately 40 IPSec site to site VPN's on this. ,Will anyconnect interfere with the site to site tunnels?,If I setup anyconnect with the IPSec instead of SSL do I still need to purchase the premium or essentials license?,Lets say if I do have to get the license and I get essentials will it cause any issues with the site to site VPNs?

View 2 Replies View Related

Cisco Firewall :: Interruptions Of Connection Through ASA 5520

Dec 12, 2012

I have a problem with the connections to the remote webservice passing through ASA 5520 firewall. Connections are usually  interrupted in perod of half an hour in every few days.
 
This ASA 5520 firewall is only one firewall in a path to the remote webservice.
 
During the interruption I find the logs:
 
UTC: %ASA--4-419002: Duplicate TCP SYN from dmz1:x.x.x.x/.... to outside:y.y.y.y/p with different initial sequence number
 
Teardown TCP connection 28309406 for outside:y.y.y.y/p to dmz1:x.x.x.x/.... duration 0:00:30 bytes 0 SYN Timeout
 
How I could find root cause? Could it be solution implemetation of TCP State Bypass?

View 1 Replies View Related

Cisco VPN :: SIP Traffic Through ASA 5520 (Teardown UDP Connection)

Nov 22, 2008

I have a VPN tunnel between my ASA 5520 and another device.The tunnel is up and there are no problems in that. I have a SIP device behind my ASA and anther one behind the other device (no specific details about the other side since it is with a client).I have allowed the (ICMP & IP) traffic to pass through the tunnel, and I successfully can ping from my SIP the client's SIP through the tunnel.When I try to make a SIP call over the tunnel it fails.After troubleshooting I found the bellow results:
 
1-     the traffic never go through the tunnel (the number of packets are not increased when I try to make a call although it in increased when I ping the other side)

2-     When I made a test using the ASDM (Packet tracer) the result is successful (the traffic is NATed and allowed (passed the access list) and goes through the VPN tunnel).

3-     the below result are the output of the logging of my ASA:
 
6|Nov 23 2008|11:00:24|305011|10.43.11.86|39421|62.Y.98.30|10932|Built dynamic UDP translation from Voice:10.43.11.86/39421 to outside(Voice_nat_outbound):62.Y.98.30/10932
 6|Nov 23 2008|11:00:24|302015|63.x.0.102|5060|10.43.11.86|39421|Built outbound UDP connection 476764 for outside:63.x.0.102/5060 (63.x.0.102/5060) to Voice:10.43.11.86/39421 (62.Y.98.30/10932) 
6|Nov 23 2008|11:00:24|305011|10.43.11.86|5060|62.Y.98.30|43072|Built dynamic UDP translation from Voice:10.43.11.86/5060 to outside(Voice_nat_outbound):62.Y.98.30/43072

[code].....

View 5 Replies View Related

Cisco Firewall :: ASA 5520 No Address Available For SVC Connection

Oct 7, 2012

We recently replaced our Cisco 5510 with a 5520. I had the SSL Client VPN working on the 5510, I cannot get it working on the 5520. The IOS version is 8.2(5) and the ASDM version is 6.4.I run through the SSL Client wizard and get everything set up. When I try to get to my outside interface Internet Explorer just comes up with an error. When I try to connect through the Cisco AnyConnect client on my Android it used to come up with a "No address available for SVC connection". After deleting an address pool not even related to my SSL VPN profile I cannot get that far. I just get a "login failed". Even after I create a user with level 15 privilege and assign to my vpn group policy.I still get the "No address available for SVC connection" when I try to connect to the default profile, which doesn't really go anywhere.

View 23 Replies View Related

Cisco Firewall :: ASA 5520 Denying SSH Connection

Apr 9, 2013

Device Cisco ASA
Model:5520
OS 8.4(2)
 
I am not able to access the device via SSH .After connecting to teh console I have found that allowed SSh session are fully utilized with show resource usage command and the output is [code]
 
So I used show ssh session command to see who is using the sessions but in the output it has showed only one session and the output was [code]

I was wondering why it shows only one session above instead of showing all the 5 sessions which are utilized as confirmed by show resource usge command.We are usning some internal tool for ssh monitoring on device which is poling the device after a fixed interval for port 22 reachabilty .I dont think these tools are making any issue as this is secondary firewall and we are not facing any reachabilty issue for primary firewall.also we are using 10 min for idle ssh timeout.

View 13 Replies View Related

Cisco Firewall :: Connection Timeout ASA 5520?

Oct 25, 2011

I configured multiple vlan on my Cisco ASA5520. Everything work perfectly except RDP (3389) connections. The connections are established but but after a period of inactivity, the user is disconnected from server (black screen). The same problem happens with other type of connections (client/server), exemple : Oracle, file sharing. Before installing the ASA, computers and servers were in the same vlan and it worked well.
 
There's a notion of inter vlan timeout connection ?

View 5 Replies View Related

Cisco WAN :: ASA 5520 (Interface 1 And 2) Connection Settings

Feb 6, 2012

I have attached setup like this  :- This is the same scenarios as ASA with Dual WAN setup. But my requirement is different. I have added in ASA and configure sla is asa, all working fine. When one link goes down traffic pass through backup route. my sal config is below:-

sla monitor 100 type echo protocol ipIcmpEcho 10.5.5.120 interface Link1
num-packets 3 frequency 10
sla monitor schedule 100 life forever start-time now

show runn routes are :-
route Link1 10.5.5.0 255.255.255.0 10.4.4.5 1 track 10
route Link2 10.5.5.0 255.255.255.0 10.6.6.5 254
  
Is there any way that i can implement track on 2nd link to destination? because may be after Link1 failure when backup route was it would be able pass traffic to destination, may be link failure between Link router and Destination. Can i monitor backup link if that is active and traffic can pass to destination when 1st Link1 will fail.

View 1 Replies View Related

Dell :: 5520 No Wi-Fi Internet Connection

Jan 30, 2013

i am using Dell inspiron 5520

I bought it just before 2 months, before i had no problem wit the internet connection. It was working perfectly.But after once, i have restored the system to Last Known good configuration. .i am unable to connect it to the internet. When i try to connect it to my Wi-Fi modem. .I am getting a error message as. .LIMITED ACCESS..!

View 1 Replies View Related

Cisco VPN :: Client Multiple Connection Capability ASA 5520

Aug 15, 2011

My basic question is, does Cisco VPN Client allow two simultaneous VPN connections at once?I want to set up the following:User Client (Remote Access VPN via Internet)--> Head Office ASA 5520 A/S Pair --> (Remote Acces VPN via Internet) --> Branch Office ASA 5510S+ A/S Pair,So, in order to access the branch office system, the user must:Connect to Head Office ASA peer via Cisco VPN Client (user/password authentication),Head Office ASA peer gives a private 172.16.1.x IP, and is configured to route all requests to Branch Office's public ASA IP via it's own public IP address. Once Head Office VPN established, user establishes a SECOND VPN tunnel from Cisco VPN client (user/password and cert-based auth).

View 3 Replies View Related

Cisco VPN :: ASA 5520 8.4.1 IPSec VPN No Matching Connection For ICMP

Jun 23, 2011

I am trying to set up remote access vpn on an asa 5520 running 8.4.1.  I have the ipsec group, policies, and ip pool set up.  When I try and connect with the cisco vpn client I see the following in the logs.  Deny icmp src outside:214.67.39.42 dst outside:24.252.51.73 (type 3, code 3) by access-group "acl_inbound".  Do I need to put in some firewall rules to allow this traffice so that the VPN can connect?

View 9 Replies View Related

Cisco Firewall :: ASA 5520 Need Single Fiber Connection

Jun 24, 2012

I have a Cisco ASA 5520 that I'd like to be able to connect directly to our gigabit fiber connection (we're currently connected through a media converter that's causing problems).  I've found the following:Cisco ASA 5500 Series 4 Port Gigabit Ethernet Security Services Module [URL]. I only need a single fiber connection, as opposed to the 4 copper + 4 fiber.

View 1 Replies View Related

Cisco VPN :: 5520 Terminate Remote Access VPN Connection

Aug 6, 2012

I Have asa 5520 terminate the remote access VPN Connection,when successfully  connect to my corporate Network and try to copy a file(30MB) from the share to my PC ,it takes around 2 Hours or it disconnect.what is the speed of the vpn client once y connected to the corporate over the Internet ?at my home i have 512 ADSL while at my corporate we have 155Mbps Internet speed.

View 1 Replies View Related

Cisco Firewall :: ASA 5520 - ESMTP Connection Dropped

May 30, 2013

We are working with an ASA 5520 and it seems there is an issue with some email messages sent throught it. When there are many recipients in the emails the email messages are not sent, and I have revised the server an the only thing I see is connecting dropped. When I went to see ASA log and see this log report: ESMTP Classification: Dropped connection for ESMTP Request from 'interface': servername/portnumber to outside: IP address/25; matched Class 2: cmd RCPT count gt 100 tcp flow from interface:servername/portnumber to outside: IP address/25 terminated by inspection engine, reason - inspector disconnected, dropped packet. So I think there should be an inspection of ESMTP packets and if they detect an email message sent to over 100 addresses, then the packet is dropped, am I right? if so, what should I do to let those email messages be sent?

View 6 Replies View Related

Cisco Firewall :: ASA 5520 - Internet Connection Lost

Nov 28, 2012

I have a Cisco ASA 5520 that we was working properly. I tried to create a VPN IPSEC to test but when I finished the wizard I lost the conection between the inside interface and outside. I use other interface for DMZ and other for printers network but this adapters are working properly. I have reviewed the NAT's and the ACL's but I don't see the problem?

I have delete the VPN IPSEC but it's still not working and I have the network down

View 2 Replies View Related

Cisco Firewall :: Connection Failing Intermittently - ASA 5520 Version 8.3 (1)

Oct 19, 2011

I have a server in a DMZ behind the ASA, connections to this server work sometimes and then fail others, so I dont think i'm looking at an ACL or NAT problem here.The syslogs report a SYN Timeout,I have taken a trace on the ASA, it seems that a SYN-ACK does come from the destination server within the 30sec timeout, but its not passed through the ASA back to the source ?  there is one odd thing, what seems to be an out of sequence ACK from the destination which arrives before the SYN-ACK at the ASA, i'm wondering if this might be the problem ? This only occurs on the connections which fail, the connections that work, the destination responds quickly to the initial SYN, and the 3way handshake completes.
 
Syslogs :
 
Oct 18 19:17:32 nzlsudfedsi001-pri Oct 18 2011 19:17:32 NZLSUDFEDSI001 : %ASA-6-302013: Built outbound TCP connection 42327212 for IIP-ARCHIVE-PROD:172.24.32.31/21 (172.24.32.31/21) to BPO-TRANSIT:x.x.x.x/59392 (x.x.x.x/59392)
 Oct 18 19:18:02 nzlsudfedsi001-pri Oct 18 2011 19:18:02 NZLSUDFEDSI001 : %ASA-6-302014: Teardown TCP connection 42327212 for IIP-ARCHIVE-PROD:172.24.32.31/21 to BPO-TRANSIT:x.x.x.x/59392 duration 0:00:30 bytes 0 SYN Timeout

[code].....

View 2 Replies View Related

Cisco Firewall :: Connection Failure In ASA 5520 Security Contexts

Mar 27, 2011

Ive got a virtualised firewall running 3 security contexts in routed mode. What am experiencing is that i cannot connect to an OUTSIDE host through the security contexts. From the firewall itself i cannot ping the directly attached host on the OUTSIDE interface but i can ping the directly attached host on the INSIDE interface. When i reload the firewall box, the first ping to the OUTSIDE host would be successful but subsequent pings fail and thus total connectivity is lost.
 
I even tried upgrading to ASA version 8.4(1) but still the same.

View 5 Replies View Related

Cisco Firewall :: Edge Router Connection For Outside Interface Of ASA 5520

May 1, 2013

We have ASA 5520 firewall.For broadband Internet access, we have T1 Router(edge router provided by ISP) which provides public IP's 198.24.210.224 / 29. We have usable public IP's 198.24.210.226 - 198.24.210.230 with default gateway 198.24.210.225. We assigned 198.24.210.230 255.255.255.0 to the outside interface.
 
If we connect the ASA 5520 outside interface directly to T1 router, can all packets with destination addresses 198.24.210.224/29 reach the outside interface without using other device like another router or switches?I just assume that only packets with destination address 198.24.210.230(outside interface ip) can reach the outside interface from the edge router.Is it wrong assumption?  If it is correct, then is there any way to route all packets with destination address 198.24.210.224/29 to the outside interface?

View 3 Replies View Related

Cisco Firewall :: 5520 - PPTP Connection Dropped Every 120 Minutes

Jun 27, 2012

I am using a pptp server running on windows 2008 server and I have configured my ASA 5520 to let the PPTP traffic to pass throught.
  
The solution works quite well but exactly every 120 minutes the connection drops and people have to reconnect. Is there any setting to change? In the PPTP server I haven't found any setting to change.

View 2 Replies View Related

Cisco Firewall :: ASA 5520 - Connection To Multiple Switch Stacks

Nov 11, 2012

Currently in our environment we have have two buildings with an ASA 5520 in each and a core stack of 3750's in each building. I am currently working on a network segmentation project and am thinking of adding another stack of 3750's in each building to add more redundancy to our network. This will allow our access layer switches to have a trunk to each stack and prevent an outage if one of the links or stacks were to go down.
 
My question is how I would set this up on the ASA end of things while using a common subnet and HSRP on the 3750's. I understand how to use HSRP and STP on the switches to achieve this on the 3750 end of things. I saw you can do etherchannel on the ASA with 8.4 but how does that work in a failover situation?

View 2 Replies View Related

Cisco Firewall :: ASA 5520 Inbound Traffic On Backup ISP Connection

Nov 3, 2011

I have a client that has an ASA 5520 that has two internet connections, FIOS and Comcast.  The ASA is configured to failover from the FIOS to the Comcast if the FIOS fails.  This works perfectly fine.  However, I was wondering if VPN and other inbound traffic will come into the secondary connection when it is active.  I think VPN will work inbound when the FIOS connection fails, but I am not sure about the other inbound connections. 

View 1 Replies View Related

Dell :: Inspiron 15 R 5520 - Poor Wireless Connection?

Jul 7, 2012

I have purchased a Dell Inspiron 15 R 5520. the wire less net work for this laptop is very limited. i am loosing connection aftre, i am moving 4 meter away from the source.

i have other dell laptop at home, but thats works well.

View 3 Replies View Related

Dell :: Inspiron 15R 5520 - Wireless Connection Is Very Slow

Jun 15, 2013

I bought my Inspiron 15R 5520 yesterday evening. Today when I was using my laptop on wireless network then I realized that it's very slow. Then I used application speedtest.net to check the download speed, it's just 9.09 Mbps instead my old HP laptop was receiving 43 Mbps.

I have Network Adpater : Intel Centrino Wireless N 2230 having version number 15.5.7.52 which is latest.

View 4 Replies View Related

Cisco VPN :: ASA 5520 / Site To Site Failover VPN Connection And Routing?

Apr 8, 2013

We have 3 sites, with a Cisco ASA 5520 at each location.
 
HQ (Headquarters)              internal network: 172.16.110.0/24,
DR (Disaster Recovery)       internal network: 172.16.120.0/24
BO (Branch Office)               internal network: 172.16.150.0/24
 
HQ and DR have a 100Mbps permanent MPLS link between each other.Branch Office has a Site 2 Site VPN connection to HQ. If it fails, it establishes a Site 2 Site VPN connection to DR. This works perfectly.Now the routing issue... There is no route to the BO in the routing table at HQ/DR. The default gateway is used to reach the BO and that works for HQ when the VPN is between HQ/BO. If the VPN fails over to DR/BO, HQ can't reach BO anymore.I need to have some kind of conditional route injection from the ASA where the VPN is established. I was considering a tracked static route, but I was wondering if the S2S VPN itself has a functionality to do so. I thought the Reverse Route Injection was it but it's enabled on our crypto map and doesn't seem to work...

View 4 Replies View Related

Cisco VPN :: VPN Site To Site Connection ASA 5520 And 5505

Nov 5, 2012

We have a site to site client that is having issue with intermittent disconnects.  The Main endpoint is a CIsco ASA 5520 8.4.3 and the remote site has a a Cisco ASA 5505 8.2.5.

If we have a disconnect, we can "logout" of the Main ASA and the connection seems to find itself and traffic will flow.  This take place about every 1 - 5 minutes but if you reset the crypto (which I am assuming you do) by logging out under the Logging Monitor Session - ikev1 sessions.  It all starts right back up.

I am stumped. At first I thought MTUs but I am not sure that is the answer.

View 1 Replies View Related

Cisco Firewall :: Different Between ASA-5520-K9 And ASA-5520-K8

Nov 2, 2012

We were using ASA-5520-K9 with  ASA-SSM-AIP-20-K9 but recently found some hardware problem in our running ASA. Now cisco want to replace with ASA-5520-K8.

View 1 Replies View Related

Cisco :: Cannot Get Into ASA 5520

Jan 31, 2011

After having a hard time getting the VPN back to default, I logged into the ASDM and reset to factory defaults. After it reset, I logged in via the management port and configured everything to work. When I clicked on "apply", it gave an error saying that the inside interfaces, g0/1, IP address is on the same network as the management interface. When the ASA restarted, I am now unable to get into the unit via the management port or the inside interface.

I had set the management port to 10.0.1.254. WHen I connect an ethernet cable to it and place my mac on the the same network, I can ping the management interface, however I cannot SSH, Telnet or ASDM into it.

Here is the big problem, I don't have a console/rollover cable to connect to the console interface. Is there another way I can default the box? Maybe via the reset button on the back somehow? Or, is there a way to figure out the ip address of the inside interface? I'm assuming, since it did not take the IP I set, that it defaults to something right?

View 17 Replies View Related

Cisco :: ICMP Through ASA 5520?

Jan 26, 2012

I cannot seem to ping between devices on two networks hanging off a 5520 unless I use the same-security interface command. I have the relevant ACL's set up between the interfaces, but it just doesnt work unless I have that command in - if I use that command, it bypasses the ACL.

Config

interface GigabitEthernet0/0.224
description NMS
vlan 224
nameif NMS
security-level 100
ip address 10.11.120.225 255.255.255.240[code].....

View 8 Replies View Related

Cisco WAN :: ASA 5520 - Implement With A New ISP

Jul 31, 2011

We are attempting to implement an ASA 5520 with a new ISP.  Based on the limited routing needs, I believe we can use it as the router as well. I am familiar enough with routers, but the ASA is obviously a different thing.
 
The setup looks like:
 
ASA Version 8.2(1) !
host name Cisco
 interface GigabitEthernet0/0description Internet name if Outsidesecurity-level 0ip address 69.XX.46.1 255.255.255.252 !interface GigabitEthernet0/1
description DMZnameif DMZsecurity-level 0ip address 69.XX.56.1 255.255.255.240
!interface GigabitEthernet0/2description Localnameif Insidesecurity-level 15ip address 10.0.XX.XXX 255.255.252.0
[Code] .....

1) Outside 0/0 connects to MRV from service provider (Public)
2) DMZ 0/1  connects to outside switch with servers (Public)
3) Inside 0/2 is LAN (Private)
 
A) Based on a completely default config and aside from setting the routes to send traffic from inside to outside, and outside to DMZ, what is the next step?
 
B) What should the interface security levels be, I am unsure what they should be or why...?
 
Based on the initial config with interfaces set as above, I cannot move traffic through.

View 5 Replies View Related

ADVERTISEMENT