Cisco WAN :: 1841 Router Can't Resolve DNS After Enable IOS Firewall

May 9, 2013

my 1841 router can't resolve dns after enable ios firewall, I try to ping google.com from router's console fail, but dns resolution is fine from lan side.
 
my partial config---------------------------------
!
ip name-server 8.8.8.8

[Code].....

View 10 Replies


ADVERTISEMENT

Cisco WAN :: How To Enable GUI For 1841

Nov 23, 2011

How to enable GUI for a Cisco 1841?

View 4 Replies View Related

Cisco :: How To Enable GUI For 1841

Nov 23, 2011

How to enable GUI for a Cisco 1841?

View 1 Replies View Related

Cisco Firewall :: 5505 DNS Does Not Resolve Inside DMZ

May 14, 2012

I have a 5505 that currently has inside/outside interfaces and everything is working just fine. I am trying to create a DMZ that will essentially be just for vendors/guests. the DMZ will have full access to the outside (Internet) but no access to the inside. I am using the FW for DHCP, and 8.8.8.8 and 4.2.2.2 for DNS. I currently have 1 laptop in the DMZ vlan, and it is getting a correct IP, and it is showing 8.8.8.8 and 4.2.2.2 in ipconfig. I can ping/tracert 8.8.8.8/ 4.2. 2.2/74.125.137.147(what url... resolved to on a laptop connected to the inside vlan), but I cannot ping nor browse to url.... [code]

View 1 Replies View Related

Cisco Firewall :: How To Configure 5520 To Resolve Names In ASA

Feb 4, 2013

How to configure ASA 5520 to resolve names in ASA's. We are currently using ASDM to configure network objects with the hostnames in the internet and then specifying the IP address . But this is done manually. Is there a different way of setting it up on ASA. Also when getting reports from ASA, we see the IP's but is there a way that we could add an identity to the IP's (reverse lookup)

View 1 Replies View Related

Cisco Firewall :: ASA 5520 - Unable To Resolve External Hostname Internally

Jul 1, 2012

I am working on adding a mapping to our external address for our mail server - let's call it mail.example.com
 
I would like to be able to access mail.example.com internally for our user's smartphones - if they access our company WiFi they are not able to get mail using the mail.example.com as the server name in their phone setups.  However, once they leave the office and use any other WiFi it works fine. Also, I am unable to ping that address from any internal device.  I believe also this is the reason Exchange accounts do not work on our site to site VPN connections.
 
I have a ASA 5520 and work primarily in the ASDM 6.4 to do configurations in the main office and have 5510 in our site to site connections.

View 6 Replies View Related

Cisco Firewall :: Allow Dmz Zone Server To Resolve Only Dns Query Through Nslookup On ASA 5540

May 2, 2012

How I can allow dmz zone server to resolve only dns query through nslookup on ASA 5540? What is the configuration required on ASA 5540 ?

View 13 Replies View Related

Cisco Switching/Routing :: 1841 Enable ICMP After Auto-secure

Dec 31, 2011

I ran autosecure on my 1841 routere and now I cant do ping or traceroutes. What should I do to enable the pings and traceroutes after auto secure is done.

View 1 Replies View Related

Cisco Firewall :: 2911 Router Zone Firewall And IP NAT Enable

Mar 20, 2013

I have a simple setup where I have a 2911 router with three interfaces, Inside, Outside and a second "Inside" interface which is labelled as a DMZ. The Zone Firewall applied to the "DMZ" is actually Inside (until I can work through problems). I need to be able to access a device on the DMZ via its external IP so I have designed NAT to use IP Nat Enable commands. This is now working for me fine. However, since utilising IP Nat Enable, my zone firewall now denies return TCP / UDP traffic and consequently I no longer have any internet access. Looking at the syslog messages, the reason for this is that the router is denying these return flows not because they are matching the outside-to-inside policy, but rather they are matching the outside-to-SELF policy. The router seems the detect that the internet traffic is being returned to SELF, when in reality the NAT rule should pick this up and forward it to inside. I can understand why this is happening, because I am NATting all private / inside traffic behind the external IP of the router, which is assigned to the Gi0/0 interface. [code]

View 1 Replies View Related

Cisco WAN :: 1841 BPR With Router And Firewall

Oct 20, 2012

In my company, we have two Internet connections, one for VPN and the other for emails and browsing. I have Cisco 1841 router with dual ADSL links, and also it's conntected to ASA and the other PIX. through one physical interface (vlan 1and vlan 2). The PIX firewall is connected to users, and the ASA is for VPN only.How can I seperate the traffic is going for emails and browsing and the vpn traffic. I have got to the point, that the router is configured for both ADSL connections, and I also configured the access-list and route-map in the router, the thing is when both ADSL configured together none of them works.

View 1 Replies View Related

Cisco :: Configure 1841 Router And Firewall?

Feb 11, 2013

Configuring Cisco 1841 router and firewall.My provider has put their equipment and given me 2 subnets with public ip address. I am used to getting just one Subnet and connecting my firewall straight to the hand off. But in this case I am a bit confused. I assume I will need to put a router and configure it with before I connect my firewall. [code] I also have a firewall that I would like to be on the subnet 2 at 200.xxx.97.130 and have my private network 192.168.xxx.xxx behind it.

View 2 Replies View Related

Cisco WAN :: 2800 Setup Router To Resolve Both Internal / External DNS Requests

Jun 3, 2012

I have a 2800 with one Gigabit interface connection to our Lan and the other interface connected to the internet with a public IP address. Now I'd like to setup the router to resolve both internal and external DNS requests. Thus requests like www.google.co.za and LocalLanPcName should be resolved to their public and private IP's respectively. [code] When I ping any name the only DNS server that is ever queried is 192.168.1.200 (it does resolve internal name correctly though).

None of the other servers are attempted to resolve the name. It does not matter if I specify a FQDN or not.
 
How do I setup the router so that my internal resolution is handled by 192.168.1.200 and .201, while external resolution is handled by 41.160.36 and .37. Or alternatively, how do I configure it to at least try all 4 specified name-servers for resolution, and not fail after trying the first one unsuccessfully.

View 9 Replies View Related

Cisco Switching/Routing :: Setup Of Firewall In Between 1841 Router And Switch

May 26, 2013

We have a setup of a firewall in between my Cisco 1841 router and Switch.
 
Cisco Router --> Meraki Firewall--> Switch
 
Client VPN is configured on the Meraki Firewall but then for the outside users to client vpn in to the network, I have to port forward or open the ports 500 and 4500 to the IP address of the Meraki Firewall 192.168.1.90. [code]

View 4 Replies View Related

Netgear WGR614 V9 Router - Unable To Resolve Server DNS Address / Error 105?

Dec 27, 2011

I'm connected through the router, a few times a day I cannot open web pages, getting error: Error 105 (net::ERR_NAME_NOT_RESOLVED): Unable to resolve the server's DNS address.Skype continues to work. Here are the results of pinging:

Quote:

Microsoft Windows [Version 6.1.7600]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:UsersSri Guru>ipconfig /all[code]....

One technician said that this is the providers problem, but I don't think so. When I restart the modem everything works.I have a Netgear WGR614 v9 router.I use ESET 5 security. Btw, connection drops on all computers connected through the router, so it's not my firewall.

View 3 Replies View Related

Linksys Wireless Router :: WRT310N V2 Failing To Resolve Domains Correctly

Oct 29, 2012

So i see tons of threads here and on google talking about dns issues with their linksys router but I never see a solution other than to locally change the dns servers on the client machine to prevent it from using the linksys router dns.  My router is the WRT310Nv2 running the latest firmware but I see others are affected as well.   url...My issue is this router continues to fail dns resolutions and I have to either reset it or tell my client machine not to use my router as a point of dns resolution. 
 
1. Why is my router failing to resolve domains correctly?

2.  Is there anyway to fix this from the router?

View 7 Replies View Related

Cisco Firewall :: 1841 / IOS Firewall Keeps Stopping Mobile Apps?

Nov 11, 2012

The other day I set up a firewall on my Cisco 1841 router, it all seems to work fine except for a few small problems.  2 wireless devices an iPhone and an Android tablet are having some problems with 1 or 2 apps.  iPhone 6.0.1 Facebook app and the App store will not load Android tablet ICS BBC iPlayer and Google play app store wont load or play content.  Both devices with their issue were working fine until the new firewall was installed.  I’ve tried opening ports and adding ACLs but nothing seems to work.  I’ve included my start up config.  All other PCs, laptops, smartphones and iPads work fine. 
 
Building configuration... 
 
Current configuration : 5551 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!

[code].....

View 3 Replies View Related

Cisco Firewall :: 1841 - Which IOS Support Zone Based Firewall

Jan 3, 2013

I have a cisco 1841 router  , and i want to configure zone based firewall on it. But the document of zone based firewall only said that "after 12.4(6)T" can support zone based firewall. I use the ios  " c1841-ipbasek9-mz.124-15.T9.bin ", but it can't support ZFW. What kind of ios support ZFW. for example: ipbase, ent base, ip service ,advent etc.

View 2 Replies View Related

Cisco Firewall :: 4500 Enable VPN IPSec Through Firewall

Apr 16, 2011

if y need to enable VPN IPSec through the firewall. y just need to need to allow the port 4500?

View 2 Replies View Related

Cisco Firewall :: 1841 / How To Deploy ISO Firewall Feature

Feb 13, 2012

What is the best way to deploy the IOS firewall feature?I have a Cisco 1841 router running 12.4. 

View 4 Replies View Related

Cisco Firewall :: How To Enable VPN-3DES-AES And Another ASA Box

Mar 23, 2011

How to enable the VPN-3DES-AES and another ASA Box.Mate's license (VPN-3DES-AES Enabled) is not compatible  with my license (VPN-3DES-AES Disabled). Failover will be  disabled.The license on  secondary is not compatible for secondary ASA for the  failover. [code]

View 2 Replies View Related

Cisco Firewall :: How To Enable Ssh On ASA 5525

Aug 15, 2012

May I know how to configure for remote accessing ASA 5525 via ssh?I have issued the following commands
 
ssh 10.60.0.0 255.255.0.0 outside
ssh 10.60.0.0 255.255.0.0 dmz
ssh 10.60.0.0 255.255.0.0 inside
ssh timeout 5
 
but I am not able to access ASA via ssh. Do I need to add any other command

View 20 Replies View Related

How To Set Up Firewall To Enable Wireless

Jan 17, 2011

my windows is no longer connecting to the internet.i I ran a diagnostic and it said to check firewall settings for the http port(80), https prt(443) and the ftp port(21). I haven't change anything in my settings and dont know why all of sudden i hvae to check firewall settings.

View 1 Replies View Related

Cisco WAN :: 1841 Connection Between ISP And Firewall

Apr 2, 2012

I have a Cisco 1841 serving as a connection between my ISP and my Firewall (non Cisco).
 
I seem to be having performance issues with my traffic going through the Router.HTTP (web browsing) is fine andI get my download rate as I would expect for a 10mbps connection.But anything to do with my VPNs I find a delay when sending via the 1841.(all my VPNs are managed by my Firewall and I have never had problems with those).
 
I also have a legacy ADSL connection to my firewall, which bypasses the 1841 and I am having no issues on that at all.If anything it is quicker! Which is madness as my Fibre should out-perform it easily.This leads me to believe the issue is not with the Firewall.
 
My 1841 is very simply setup, 2 fa interfaces with simply a default gateway setup within it.Which leads me to ask if I need more static routes in or a dynamic route protocol setup?

View 4 Replies View Related

Cisco Firewall :: 1841 NAT Out One Interface But Not Other With IOS?

Feb 27, 2012

I am trying to figure out how to use a Cisco 1841 IOS router to take traffic from one interface and source NAT it out towards the Internet on one interface and at the same time NOT perform NAT when sending the traffic towards a different routed interface. 
 
Here the RemoteSite has connectivity back to the MainCampus, but there is no need to NAT traffic from the one site to the other.   They share the same umbrella of address space.   However, the RemoteSite needs to have its Internet-bound traffic NAT'ed out to the Public Internet via a third interface.  I know that I could just NAT everything out from the Remote Site and map the traffic back onto the same address space for intra-campus communication, but I'd rather avoid that and just NAT where I need to NAT it to the Internet.
 
I do have a caveat here:   in the event that either the MainCampus or the Public Internet interfaces go down, I would like to failover traffic from the downed link to other good link.  For example, I want to NAT all traffic (including "intra-campus" traffic) out via the Public Internet if the direct link to the MainCampus is down.  For the other example, if the Public Internet direct link is down, I would just send out all traffic without NAT towards the MainCampus.

View 1 Replies View Related

Cisco :: LMS 4.2.2 - Fault Manager Does Not Resolve Hostname

Dec 13, 2012

This is Cisco Prime LMS 4.2.2 on Windows 2008 R2
 
As far as I understand it Fault Manager need to be able to do reverse lookup for ip adresses to show the correct name in the "device name" column. I have double and tripple checked and all devices that only is shown as an ip address do have a reverse in the dns used by the LMS server. The device is correctly registered and inventory have been run. If I hold the mouse pointer over the crosshair on the row of the offending device all info is shown including correct device name and fqdn.
 
The server is upgraded from 4.2.1 to 4.2.2 and we have the same problem before the upgrade.

View 2 Replies View Related

Cisco VPN :: 5520 - Cannot Resolve DNS In Windows 7 X86 SP1 With 5.0.07.0290

Jun 23, 2011

I am unfortately the only IT staff now for 100 - 150 users in my organization besides a consultant who doesn't have an answer for this issue even though he sold us the hardware and environment. While I realize that this version of the Cisco VPN doesn't support Windows 7, we do have some Windows 7 PC's that have the software and work perfectly fine upon install. In this case, I am at a remote location with both a Windows XP SP3 and Windows 7 SP1 computer. Both have the same Cisco client installed and connect to our ASA5520. I cannot get DNS resolution out of this computer to any remote network resources or other domains such as cnn.com including localhost. Adding the entries manually in the hosts file does nothing and I even tried removing the VPN client, the network connections and components and even a manual winsock reset. I cannot resolve internet DNS but can ping all internal IP addresses. The Windows XP computer across from me has no issues. I am not going to update any VPN clients as we still don't have computers who are functional so I need to spend money where it counts before I upgrade computers and I cannot perform a downgrade on this model because the previous person who bought it didn't bother to check Windows XP compatibility before they installed them in 10+ communities.
 
Here's my IP config - FYI all works well when not connected to the VPN for general web domains.
 
C:UsersAdministrator>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : GHN-Green-S01   Primary Dns Suffix  . . . . . . . :

[Code].....

View 2 Replies View Related

Cisco :: How To Enable Ftp Traffic Through Firewall At Work

Jun 11, 2012

I am trying to enable Ftp traffic through our firewall at work. We have a Cisco 5505 ASA and we cannot access any Ftp servers outside our network. We are running 8.3(2). Any have commands I can run to allow us to connect to ftp sites?

View 6 Replies View Related

Cisco Firewall :: How To Enable Not Used Interfaces On ASA5520

May 12, 2011

I have a pair of brand new 5520s I am in the middle of commission.  After carving out all the DMZs etc I needed I realized that I really neede another physical NIC, not just another VLAN off a configured nic. [code]I am running 8.3(2).  How can I turn these "Not used" interfaces into useable ones?

View 2 Replies View Related

Cisco Firewall :: How To Enable SSH With ASA 5505 Running 8.3(2)

Aug 2, 2011

I'm replacing a new ASA 5505 due to a corrupted flash.  On the original unit, I had the ability to SSH into the device using TeraTerm with no problems. While configuring the new device, I entered commands to enable SSH into the unit.

View 5 Replies View Related

Cisco VPN :: ASA 5510 - Enable VNC Connectivity Through VPN Firewall?

Sep 28, 2011

We would like to enable our HelpDesk and Network team the ability to connect to Laptops using our ASA 5510 VPN device using Secure VNC application.  Not sure if this is possible or how to enable this option.

View 5 Replies View Related

Cisco Firewall :: Enable SIP From Outside To Inside (ASA 5505)

May 14, 2012

We recently purchases the Cisco ASA 5505 to get familiar with it, possibly buying more appliances for our branch offices. However, since the appliance is installed, our SIP telephones no longer register with our SIP service provider.
 
The SIP phones are all on 10.0.1.0/24 while the SIP provider is external via the outside network. I copied our configuration below. how to enable SIP for all 10.0.1.0/24 hosts and ports 5060, 5160, 5260, 5360?
 
gcxfw# show running-config
: Saved
:
ASA Version 8.4(3)

[Code].....

View 2 Replies View Related

Cisco Firewall :: Enable ASDM On ASA 5510

Feb 8, 2012

I have just erased an ASA and upgraded the firmware and then added an IP. How can I enable the ASDM as I can't get on it, here is the config: 

ASA Version 8.4(3)
!
hostname ciscoasa
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
dns-guard

[code]....

View 1 Replies View Related

Host Names Do Not Resolve With Right IP Address

Nov 30, 2011

where the host names do not properly resolve with the right ip address.Example, I ping a host name, it gives me an IP, but when I VNC into the workstation, it is a totally different host.

View 2 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved