Cisco VPN :: 8.2.2 (ADSM 6.2.5) / SIP Over VPN Not Working?

Jul 9, 2012

We have an ASA running 8.2.2 (adsm 6.2.5). VPN connections are working well.But it's not possible to use a SIP client (phone or software) through an SSL tunnel.So today I've tried to look in detail on this problem. I installed an ubuntu system,openconnect and ekiga as softphone. In our network everything is working without any error. I used an external DSL connection to test everything over the VPN tunnel.I can ping the SIP server and I can access the https frontend of the the SIP Server.The client "seem's" to connect as well. I can call the ekiga client, it's ringing and i can speak and hear everything (most times).Dialing from the ekiga client ALWAYS fails. On the ASA there is no policy allowing or denying those connections. How can I trace it on the ASA ?

View 2 Replies


ADVERTISEMENT

Cisco Firewall :: ASA 5550 Cannot Logon With ADSM

May 22, 2012

I cannot logon with adsm anymore.when I run adsm, I type in my pw, and the screen keeps displaying "contacting the device". No timeout, just stays this way.I've updated the java version, no luck.I can connect with SSH with no problem. device = asa5550, 8.2(1) asdm 6.2(1) [code]

notice that there is no "with cookie-based authentication" here -- is this relevant?
 
Rebooting the device is not really an option.

View 7 Replies View Related

Cisco Security :: 5505 - No Access To ADSM

Feb 19, 2013

I still can't access ASDM. I deleted the old ASDM versions and upgraded to ASDM 7.1(1)52 which shows compatible with ASA 8.2(1). I'm on an inside NAT address connected to Eth 0/5, 192.168.1.5/24. I can ping and SSH to the FW but no ASDM. Following is passing traffic and everything else works just fine.

JEREMY-ASA# show ver
Cisco Adaptive Security Appliance Software Version 8.2(1) Device Manager Version 7.1(1)52
JEREMY-ASA# show run asdm
asdm image disk0:/asdm-711-52.bin
no asdm history enable
[Code]...

View 4 Replies View Related

Cisco :: See An Active / Standby Mac Address Section In ADSM?

Dec 17, 2012

I'm not quite ready for the Automatic Failover feature that the ASA 5520 support. For now we have a cold stand by unit. I was wondering if I can change the mac addresses of the standby unit's interfaces to be exactly the same as the primary unit. I see an active/standby mac address section in ADSM, but I think that is used in the automatic failover function.

View 12 Replies View Related

Cisco Firewall :: 5500 ADSM 6.3 Can't Open Dialogue Box

Jan 3, 2012

i'm having issues with ASDM 6.3 on my ASA 5500.When i try to add a policy under firewall --> service policy rules (Add Service Policy Rule Wizard - Rule Actions), i'm not able to add a netflow policy as I'm not presented with a dialogue box after I press "add".i've tried this from multiple computers mac os and windows.

View 9 Replies View Related

Cisco Firewall :: ASA 5505 InterVLan ADSM / SSH Access

Jun 29, 2012

I am running into a issue that I cannot seem to figure out. I have a asa 5505 with the Security Plus license. I setup a native vlan where all of my network devices sit on. ie my Wireless Access point has an ip of 192.168.3.2, my switch .3. I have no issues managing these devices from any vlan I am on (permitting firewall access rules). When I try to access my ASA via ASDM/SSH. I have to use the gateway of the vlan I am on. For instance. If I am on vlan 10 I have to use 192.168.10.1 for access, if I am on vlan 20 I type 20.1...etc...etc If I type in 192.168.3.1 I get an error in the ASDM logs that states TCP reset by appliance. This is for any gateway I type except for the gateway of the vlan that I am connected to. I am posting a sanitized config. How can I configure the ASA to permit access via any gateway.

View 3 Replies View Related

Cisco Firewall :: Unable To View PIX515e Via ADSM

May 20, 2012

I am trying to veiw my PIX515e via the ASDM, but I am unable to...Can you review my config and make sure I have everything setup the way it is supposed to?
 
PIX Version 8.0(4)32
!
hostname pixfirewall
domain-name jkkcc.com
enable password DQucN59Njn0OjpJL encrypted
passwd DQucN59Njn0OjpJL encrypted(code)

View 1 Replies View Related

Cisco Firewall :: Forwarding Ports On ASA 5510 With ADSM 6.4

Dec 16, 2012

Trying to get port forwarding going using ASDM 6.4 on a Cisco 5510
 
I want to forward port 25/Smtp to 192.168.1.10
 
I have added all the rules as outlined in the link below. [URL]
  
But when running an open port checker on [URL]
 
It says the port is closed, I have noticed that under Access Rules under the Hits columns it says 52 ?

View 7 Replies View Related

Cisco Firewall :: Pix 515e - Upgraded PMD To ADSM / Way To Configure

Feb 28, 2011

I recently upgraded my Pix 515e from 6.3 to 7.08.  Upgraded pmd to adsm.  If I do a show ver, it states 7.08.  But, if I do show config, it still shows 6.3.Why would they be different?  Since adsm runs fine, I know that the upgrade went fine.

View 2 Replies View Related

Cisco Firewall ::ASA 5550 - ADSM Created Access Lists

May 9, 2012

I am trying to unravel a ASA 5550 config that has been created over several years, by multiple people, some who used ADSM, some who used CLI.

None of them ever removed any lines from the configuration, and none did any documentation. When examining the actual configuration from a CLI perspective:

1. Does an ADSM- created access list end with any specific ADSM- added suffix?
2. When ANY access list is created in an ASA 5550, does it HAVE to be included in the access-group command to be functional? Can it also be functional if referenced in a "nat" command?
3. If the access list does meet either of the criteria specified in question #2, is it completely non-functional?
4. If an access list is applied to a logical or physical port that is shut down, is the access list functional?

View 4 Replies View Related

Cisco VPN :: ASA 5510 / How To Setup Two Java Versions For A WEB-VPN Inside The ADSM

Mar 23, 2011

We have a WEB VPN running on Cisco ASA 5510 (SW = 8.2.1 / ASDM SW = 6.2.1). There are multiple internal (Web) applications are published on it and are working. One of the Web Application is working from internal network but from outside (or internet) through Web VPN, it is getting stuck and trying to load JAVA version. It is to be mentioned here, the latter web application is required Java Version 1.4.2 while the working applications are working with Java 1.5.1.
 
Is it possible to mount the more than on Java version on Cisco ASDM to be worked together ?

View 1 Replies View Related

Cisco Firewall :: 5520 - Enabling And Disabling Graphs In ADSM Dashboard?

Jun 10, 2012

I have just logged into the ASDM for my 5520 and can see under the "Firewall Dashboard" tab that I can enable these graphs/stats, why would they be disabled?  So I was wondering if I enable these and they use alot of memory how can I disable them again?

View 3 Replies View Related

Cisco Firewall :: 5520 Enabling And Disabling Graphs In ADSM Dashboard?

Oct 5, 2011

I have just logged into the ASDM for my 5520 and can see under the "Firewall Dashboard" tab that I can enable these graphs/stats, why would they be disabled?  So I was wondering if I enable these and they use alot of memory how can I disable them again?

View 1 Replies View Related

Broadband :: Tools Can't Find Working Off Line Or Working Online

May 9, 2011

XP Home edition, went to tools can't find working off line or working online to make sure off line is not checked so I can get on line DSL Verizon , Wireless router, wireless switch in on, on the cpu

View 1 Replies View Related

Wifi Not Working On Asus Laptop - Lan Working Fine?

Feb 15, 2013

ASUS Notebook G60Vx Series

Windows 7 Home Premium 64-bit

Intel(R) WiFi Link 5100 AGN

A few days ago my internet suddenly stopped working. I plugged in the ethernet cord and everything worked fine. Checking the properties in the device manager showed the device was working properly, I also tried resetting it to make sure it was enabled but it did not work.

Upon troubleshooting, the "Windows Network Diagnostic" said the problems was that the Wireless adapter was not turned on. Using the switch on the front of the laptop as well as the function keys does nothing. Usually a graphic pops up showing if the WiFi is on or off, changinging transparent to show the WiFi is disabled. Now when I turn the switch on it always appears transparent, effectively going from off to off

So I know the computer reads both the function keys and the switch on the front but both methods never actually turns the adapter on. I just finished a system restore and nothing has changed

View 1 Replies View Related

Wifi Isn't Working On Pc But Its Working On Laptop?

Jun 12, 2012

Today, while surfing the web my internet connection on my PC just randomly shuts off. I go check on my laptop and its normal. My WiFi says that I am connected to an Unidentified network with no internet access. So i got frustrated and checked all the forums and nothing seemed to work. So i restored my computer to factory settings and I still got this problem. Does this mean my Wifi Card is bad? Is it a virus? I can see other networks fine but i just cant connect to mine!

View 8 Replies View Related

Cisco :: VPN Not Working

Sep 19, 2012

I need to know if I'm right about this. I have a customer that wants me to set up a dynamic-to-static IPsec tunnel between an 1811 router (dynamic) and an ASA with a static address.The catch is that the 1811 sits behind an ISPs cable modem where it picks up a private 192.168.x.x address.

Is there any other way to make this work where the router with the dynamic IP is sitting behind a box that's doing PAT translations?

View 1 Replies View Related

Cisco VPN :: NAT Does Not Appear To Be Working With ASA 8.4

Aug 10, 2011

I've recently been tasked with providing access to several internal servers to a remote site via one of our ASAs.  In order to keep things simple, I have begun by creating a single static NAT rule for one of the servers.  The Site-to-Site VPN connection profile was then created and testing has begun.  Unfortunately it looks as though the NAT rule isn't working.  As I monitor the tunnel, I still see our internal number being broadcasted and not the mapped address, which prevents the tunnel from being established.  The remote site has verified that this is what they are seeing too.
 
Appliance:
ASA 5510
ASA 8.4(2)
ASDM 6.4(5)
 
Address Legend:
(Note: The following addresses are not actual addresses.)
[Code]...

View 3 Replies View Related

Cisco WAN :: FTP Not Working With 877

Jul 1, 2012

I have been trying to get my FTP server working for months with no joy. It works when I connect to it internally but not from outside. If I do a port scan, I can see that port 21 is open. I tried it with disabled firewalls and also checked with ISP that nothing is being blocked. I have attached the config file. I used several differnet FTP servers such as CoreFTP, Wing FTP etc.

View 13 Replies View Related

Cisco :: Configuration Is Not Working

Apr 11, 2011

why the following configuration is not working? I have two clustered ASAs inline from one another, in front of a 4506-E switch in front of a host I want to access via RDP, like so: My issue at this stage lies with getting the UNTRUST firewall configured. I've tried the following configuration 1) Creating the host.

View 13 Replies View Related

Cisco :: Unsupported SFP Still Not Working

Oct 15, 2012

I am trying to use a Dell FTRJ8519P1BNL SFP fiber module in a Cisco Catalyst 3560 and have already run these commands: no errdisable detect cause gbic-invalid service unsupported-transceiver.But I STILL am getting these errors even after shut/no shut on the port.

View 19 Replies View Related

Cisco WAN :: SDM Not Working In R1841

May 12, 2012

I am have unabled the cisco SDM on my pc, and able to get the http for my router 1841:I have done below configuraiton in my R1841[code] why I am not able to get the above commands, and does my SDM not work due to this or anything else need to be done?

View 4 Replies View Related

Cisco Firewall :: ASA 8.4 NAT Not Working?

Jul 15, 2012

my ASA config does not work? My config is attached in a txt file.
 
I tried to forward port 25 and 110 from the outside to the inside server, but I can't connect...

View 36 Replies View Related

Cisco WAN :: 891 Dynamic NAT Not Working?

Apr 19, 2012

I've got a new 891 to replace an old 837 and I'm struggling to get the dynamic nat pool working.I've successfully configured the dialer etc for PPPoE and when I set up a static NAT translation between my PC and an external address then I can ping hosts on the internet e.g. ping 8.8.8.8 successfully. But when I remove the static translation and try and use the dynamic NAT pool then no NAT translations take place, and show ip nat translations only shows the other static entries.The relevant bits of the config are below and I've also attached a full (cleaned) config.
 
ip nat pool TestPool 81.2.123.226 81.2.123.226 netmask 255.255.255.248
ip nat inside source list 15 pool TestPool overload
 ! Can only access internet when static route is defined for my PC
! If I remove this line then it doesn't use the dymnamic pool TestPool
ip nat inside source static 172.16.0.11 81.2.123.226

[code]....

View 2 Replies View Related

Cisco WAN :: 7206 VXR - SSH Is Not Working

Feb 9, 2011

SSH is not working in Cisco 7206 VXR Router. I have configure
  
Hostname
Ip Domain name
Crypto key generate RSA
IN Line VTY 0 4
transport input preferred SHH
transport input telnet SHH
 
But stll it is not working. I am getting invalid crc recieved in packet.
 
Current IOS running is  12.3 (19) Enterprise 3des

View 3 Replies View Related

Cisco WAN :: 876 - Nat Stops Working After 30 To 60 Sec?

Apr 24, 2013

i have a 876 Router, connected to the Internet and a VPN. From inside i would like to pass all traffic destinied to 192.168.0.0 255.255.255.0 to the VirtualPPP IF and al the other to the Internet (vlan2) I have created this rule, but after applying ist works only for about 30 to 60 seconds. after that only the Internet reachable. Everytime i do a clear ip nat trans * both Interfaces will work für 30 to 60 secs again...
 
This is the relevant part of the cfg
  
ip nat inside source route-map Di1 interface Virtual-PPP1 overload
ip nat inside source route-map VLAN1 interface Vlan2 overload
!
access-list 1 remark CCP_ACL Category=2

[Code].....

View 5 Replies View Related

Cisco WAN :: ASA5505 - SSL VPN Not Working

Jun 16, 2011

I have ASA 5505 with outside interface IP 206.206.206.5 I configured the SSL vpn on this but still i am getting page can not be displaed when opening https://206.206.206.5 from broadband.

Below is the related configuration in ASA. What needs to be done in order to able to connect SSL vpn.
 
group-policy GroupPolicy1 internalgroup-policy GroupPolicy1 attributesvpn-tunnel-protocol IPSec l2tp-ipsecwebvpn  functions url-entry file-access file-entry file-browsing
tunnel-group DefaultWEBVPNGroup general-attributesdefault-group-policy GroupPolicy1tunnel-group DefaultWEBVPNGroup webvpn-attributesnbns-server 10.10.10.11 timeout 2 retry 2
policy-map type inspect http Http_inspect_policyparameters  protocol-violation action drop-connectionclass BlockDomainClass  resetpolicy-map global-policyclass global-class  inspect dns  inspect esmtp  inspect ftp  inspect netbios  inspect rsh  inspect rtsp  inspect snmp  inspect sqlnet  inspect tftp  inspect xdmcp  inspect icmppolicy-map inside-policyclass HTTPTrafic  inspect http Http_inspect_policy!service-policy global-policy global
webvpnenable outsideurl-list nuk001 "abc002" cifs://10.10.10.1 1

View 2 Replies View Related

Cisco :: View Not Working In LMS 4.2.2?

Oct 10, 2012

we have installed a new appliance of LMS 4.2.2 in our VmWare environment. The platform is running licensed to work with 1300 devices. We have approximately 500 devices in DCR, most of them are small switches ranging from Catalyst 2950 to Catalyst 3750, and also a bunch of Nexus 5548 switches.CiscoView is not working for any of them, we get an error message which we cannot interpret. We have updated to the newest possible device packages, but all to no avail.

View 2 Replies View Related

Cisco :: RME 4.3 And Get RAM Information From ASA Not Working

Jun 20, 2011

I get a lot of information via RME or SNMP but not the RAM Information.

View 1 Replies View Related

Cisco WAN :: 881 - NAT Not Working When Source IP Is From LAN

Feb 22, 2011

I have configured my Cisco 881 and it is quite stable but now I am working on some minor details.
 
I have several Public WAN IP addresses which are NATing to internal web server. When I go to the WAN IP at port 80 from the Internet, the NAT works fine and it maps perfectly to the internal Web server. However, when I try the same same WAN IP from the LAN which contains the web server, the Router blocks the traffic and I get nothing back.
 
I have verified that I can get to the Inernet from the LAN but it seems that I cannot go bfrom the LAN to the Internet and back into the LAN via NAT.

View 2 Replies View Related

Cisco :: LMS 4.2.3 And ASA SNMP V3 Not Working

Feb 27, 2013

I have ASA running version 8.2.5 and using snmp v3 as below;
 
snmp-server group Authentication&Encryption v3 priv
snmp-server user SNMP_TEST Authentication&Encryption v3 encrypted auth md5 cisco123 priv aes 128 password123
snmp-server host IN 10.10.10.110 version 3 SNMP_TEST
 
LMS device credential is as per above SNMPv3 config.Can't get this to work. Digging aroung but no avail. I also try this on ASA 9.1 but same result.

View 4 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.3 And WLC Not Working?

Sep 27, 2012

I got a question about ACS 5.3 and WLC We have now the ACS 5.3 running for MAB (good working) and TACAS for device AAA.But now our WLC’s will not work.I have created already a special “custom attribute” => role1 / mandatory / ALL Already changed to the combinations Role1=ALL / Role1=All / Role1=all / role1=ALL / role1=All / role1=all But still not working. I get a wrong response.
 
I followed the guideline in attach, PDF file.
 
Debug dump from WLC 
 
ACS 5.2 / ACS 5.3
-------------------
 *tplusTransportThread: Sep 28 15:07:59.222: auth_cont get_pass reply: pkt_length=24
 *tplusTransportThread: Sep 28 15:07:59.222: processTplusAuthResponse: Continue auth transaction
*tplusTransportThread: Sep 28 15:07:59.388: tplus response: type=1 seq_no=4 session_id=b1fddbfc length=6 encrypted=0

[code]....

View 3 Replies View Related

Cisco WAN :: What Ios For 827-4v Is Right And Working Normally From 12.4 Level

Dec 12, 2010

what ios for 827-4v from 12.4 can i use for IPSEC+ddns?i tested some from 12.4 but normally working only 12.3(26)GD, but i want ddns feature? some from 12.4 is working with tracebacks, other is not loading - with error (loadprog: error - program section linked to illegal address)

View 4 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved