Cisco WAN :: Can ASDM-5505 Allow Apple Bonjour Protocol Through VPN
Oct 27, 2011
I am trying to use the apple finder/application to view all my apple mac-mini computers. I do have two asdm-5505 connected via a vpn tunnel.At this point I can view only the computers on the local subnets. I called AppleCare and they gave some possible ports that can be opened in the firewall to allow the Bonjour protocol to pass through the ASDM:ports 5297/tcp, 5298/tcp-udp, 5353/udp, and 5354/tcp.Bonjour is the equivalent of Microsoft Netbeui used in Windows to browse the local subnet computers using Network Place desktop icon.
View 2 Replies
ADVERTISEMENT
Oct 26, 2011
I am trying to use the apple finder/application to view all my apple mac-mini computers. I do have two asdm-5505 connected via a vpn tunnel.
At this point I can view only the computers on the local subnets. I called AppleCare and they gave some possible ports that can be opened in the firewall to allow the Bonjour protocol to pass through the ASDM:ports 5297/tcp, 5298/tcp-udp, 5353/udp, and 5354/tcp
View 1 Replies
View Related
Oct 22, 2012
A customer of ours has the following access points and wireless lan controllers on site. They want to use the Apple Bonjour service with Apple TV's and iPads. I have enabled multicast feature of the 5508 globally and one the SSID.The Apple TV has an ethernet connection and the iPads connect over the wifi. The Apple tv is on the same subnet as the iPad's - the Bonjour features do work for approx 5/10 minutes then it stops working for some reason. The Access Points plug into a Cisco 2960 Layer 2 switch, the 5508 controllers plug are in LAG mode and plug into a Nortel Layer 3 stack which I have enabled IGMP snooping.I've read that the Apple Bonjour service isnt designed to work on a multi subnet network - but both the Apple TV and iPad are connected on the same subnet. Sounds like some kind of timeout but not too sure.
View 5 Replies
View Related
Jan 10, 2011
I have a brand new DIR-655 Rev B, Firmware 2.0NA.I just realized that none of my Apple device can discover each other using Bonjour, which is very essential for local connectivity for gaming and remote control and iTunes music streaming.
View 11 Replies
View Related
Apr 1, 2013
I have followed the details here as closely as I can:URL
I've upgraded to 7.4. I've enabled IGMP snooping, increased the time out, decreased the query/hello interval, went into Controller> menu and set AP Multicast Mode to Multicast with the Bonjour multicast range of 224.0.0.251.
Went into my WLAN and enabled Multicast VLAN Feature, and enabled my Multicast Interface as the same VLAN as the WLAN range.
The Lantronix Bonjour device is on the same VLAN as the WLAN (13). Accessing the Lantronix device shows it polling printers on our wired VLAN. However, no iDevice that joins the WLAN/SSID can find these printers.
View 6 Replies
View Related
Aug 7, 2012
I am using an Aironet 1142 standalone AP and want to use Apples Bonjour Service between iOS devices e.g. iPad and Apple TV.I have found here some posts that suggest to disable igmp snopping but this didn't worked for me.All devices are in the same vlan/subnet. Do I need to configure something special?
View 3 Replies
View Related
Jul 10, 2011
Can the WRT110 forward Bonjour packets? I have one WRT110 running my home wifi network with firmware version 1.0.07. I've spent hours trying to get my iPad to print to a wireless printer (HP D110a). I can print and scan from several wireless PC's on the same network but cannot see the HP printer. I started with the WEP 128-bit and then switched to WPA for a while but no luck so I switched back to WEP. I've read that other's have had similar problems with this and other Linksys routers.
From the iPad point of view I have iOS version 4.3.3. When I try to Airprint, for example through the Safari web browser, I see no printers available. I've tried many apps all with the same problem.
View 3 Replies
View Related
May 15, 2013
how to setup the wireless interface to forward multicast packets? Basically I cant get the ipads etc.. to see the AppleTV to control it. I connected an AP and it works fine so its got to be something with the way the router handles the packets from teh integrated wireless interface. I've been searching the forum for about 1hr and haven't founf anything other than a breif mention of broadcast forwarding and multicast setup.
View 1 Replies
View Related
Mar 28, 2012
I have two identical ASA 5505. I can only access through https/asdm on one of the devices from same laptop. Below is the configuration of the ASA. My internal machine ip address 10.0.0.10/8. I have tried to remove and re-enter the "http" and "Crypto key" related command. Wireshark show "Alert (level: Fatal, Description: Handshake Failure)" right after I entered URL in browser-tried IE and Chrome. Java version should not be a problem as I can access the second ASA.
View 5 Replies
View Related
Sep 22, 2011
im working on a small project on a asa 5505 and beacuse i do most of the work from the outsidei want to open up asdm without vpn.
i have it working on another asa and the only difference is the rom version.the one not working is 8.0(5) - 6.2(3) and the one working is 8.0(4) - 6.1(5) did they do some changes?
View 6 Replies
View Related
Dec 12, 2012
I am having issue logging into my Cisco ASA 5505 ASDM interface. It prompts for a username and password but it will not authenticate. When I look at the http debug it tells me that authentication failed. I have tried with both username and password as well as with just a password.
View 6 Replies
View Related
Oct 10, 2011
We have a PIX with 3 interfaces. Inside, Outside,DMZ.
On my DMZ we have some clients that come in and remotely connect back to there office via MSPPTP. I setup the ASA with this to get rid of the error message: regular translation creation failed for protocol 47 src
policy-map global-policy
inspection_default
inspect pptp
Now when the dmz client tries to connect back to there PPTP server I get the following error.
172.31.10.204 0 24.172.85.162 37624 Teardown dynamic GRE translation from dmz:172.31.10.204/0 to outside:24.172.85.162/37624 duration 0:01:30
172.31.10.204 1069 173.188.74.155 1723 Deny TCP (no connection) from 172.31.10.204/1069 to 173.188.74.155/1723 flags PSH ACK on interface dmz
172.31.10.204 173.188.74.155 63767 Teardown GRE connection 8393958 from dmz:172.31.10.204 to outside:173.188.74.155/63767 duration 0:01:08 bytes [ code]...
View 7 Replies
View Related
Feb 28, 2013
I have been browsing the forum and the support notes for a couple of hours and haven't found a definitive answer to my question. Our ASA is on the subject versions. I watched a video on YouTube stating that upgrading the ASA is easiest if you upgrade ASDM, then the ASA. Problem is, I don't think I can upgrade ASDM first because I don't see a version that is compatible with ASA 7.2.x and 8.0.x.
View 3 Replies
View Related
Jan 31, 2012
I recently upgraded an ASA 5505 that has the Advanced Endpoint Assessment License to 8.4(3) and ASDM 6.4(7). Now there are no options in ASDM for adding AV, Firewall or AntiSpyware versions and definition levels etc? I have checked Host Scan Extensions and enabled 'Advanced Endpoint Assessment ver 3.5.3.1' however when I click configure and attempt to add any AV etc there are none to select - the 'Add Products' box is just blank.I have AnyConnect 3.0.5075, CSD 3.6.4021 and have tried with the integrated AnyConnect Host Scan image and with the standalone Host Scan image (3.0.5077) and the behaviour is the same ?
View 4 Replies
View Related
Feb 19, 2012
I want to kown if is posible install IOS 8.3(2) and asdm 6.3(1) in firewall 5505 wich has 512MB of RAM and 128MB of flash. I installed it but according to the cisco page it can´t. maybe could work bad ?
View 1 Replies
View Related
Sep 14, 2011
I have a firewall Cisco ASA 5505, and currently it is a command line firewall. I want to configure ASDM so that i can use it as a GUI Web Base interface.I really don't know what to do. How can I configure ASDM on my firewall.
View 7 Replies
View Related
May 21, 2012
I have a standard ASA 5505 with inside, dmz and outside with the default security levels, 100/50/0. we have an email server inside which has been NATed and is working fine. However users accessing the wireless on the dmz are unable to access their emails on https (443). How do I allow SSL access ONLY to users on the dmz using ASA 8.4 commands or ADSM 6.4?
View 10 Replies
View Related
Oct 1, 2012
I am trying to configure a site to site ipsec vpn with 2 cisco 5505 ASA's. Unfortunately when i open up the ASDM there is no vpn wizard to start the configuration.The version of ASDM i am using from flash is 645-206.bin and the firmware on the ASA's is 842-k8.bin so should be ok. Why the VPN wizard doesnt appear?
View 7 Replies
View Related
Jan 3, 2010
recently, ater successfully connecting the VPN to the ASA 5505, I am unable to then launch the ASDM client meaning that I can only SSH in to the unit.
I found an old post from 2008 and replied. It refers to an article talking about it is not possible to enable https server and webvpn on the same interface.
Well I am running ASA 8.0(4) so this restriction does not apply.
View 16 Replies
View Related
Nov 16, 2011
I have successifuly upgraded ASA and ASDM image. My question is how to make it to boot it as default when you do a factory reset of the device. For the ASA image I found out that it will boot the first image it founds on the flash, so I left only the latest bin file and if I do factory reset it boot the latest. But for ASDM it still boots the old one, because there is no "asdm image disk0:/asdm-645.bin" command in the config. I`m not sure how, because I only left the new ASDM bin image. Is there any variable or something that still points to old asdm image?
My ASA version is 8.4(2) and ASDM 6.4(5). The old one was ASA 8.2 and ASDM 6.3.
View 2 Replies
View Related
Sep 5, 2011
I'm setting up an ASA 5505 with IOS 8.4(2) and ASDM 6.4(5) using the SSL client (well, and the Clientless SSL, but one thing at a time.) This is for a SOHO (they're on a cable modem) such that I should be able to remotely VPN into this system from anywhere on the Internet for support purposes.
I have the certificate generated, I can authenticate via AnyConnect - no errors. I'm used to using NAT exempt commands to move forward, but the ASA is telling me that my commands are invalid (as are the suggestions from the Cisco site, which apply to an earlier version of the ASA's software.) My local LAN access is fine.
I can't ping anything on the only network behind the firewall. (I can ping myself.)If I do a "route print" on my Windows box, it is routing correctly.I've got to be missing something basic, but for the life of me, I can't see it. My network behind the 5505 is 192.168.0.0/24; I have a VPN-Pool of 192.168.101.0/24; [code]
View 1 Replies
View Related
Jan 20, 2013
I've have an ASA 5505 with a inside network vlan1 (192.168.0.0/24) - i've configured an IPsec VPN profile and a VPN network of 192.168.0.50/24. I can through my VPN tunnel access inside hosts on vlan1 - but not ASDM on the ASA (192.168.0.1). Under management i've added the VPN network of 192.168.50.0/24 to have access to ASDM, but still does not work.
View 1 Replies
View Related
Apr 10, 2012
We have a new installation of a ASA 5505 and are trying to get some NAT issues straightened out. On our internal network, we have two servers running Filemaker Server, a relational database server that clients connect with using port 5003. Our goal is to be able to allow users from the outside to access either of these servers as needed. I know how to set up a simple static NAT rule and matching Access rule in ASDM which would be fine for a case in which only one server using a given port is running on a network, but for simple static rules I seem to be blocked from entering a different translated port number from the orginal port number, which becomes a problem when two servers we need to access from the outside are running software using the same port number.
What is the simplest way to address this need? I am guessing that I need to set up a scenario like this, where port 5004 (or any arbitrarily choosen unused port, can be used to access the second server: [code]
View 1 Replies
View Related
Apr 15, 2012
I am trying to configure an asa5505 8.4 ASDM 6.4 to a watchguard edge. This is in my homelab setup is 5505 connected to an 1841 simulating internet and other end a watchguard edge. Even after the wizard there is no negotiation of the tunnel at all.[URL]
View 1 Replies
View Related
Jan 5, 2012
How do I enable remote access to ASDM from outside of the network on the ASA 5505? This would be used for remote access to the firewall at a site that is not utilizing VPN.
View 5 Replies
View Related
Mar 2, 2011
When ASA 5505 was installed we selected Easy VPN Remote. Now we want to disable it. In ASDM we navigate to Configuration > Remote Access VPN > Easy VPN Remote and try to clear the Enable Easy VPN Remote checkbox but it will not uncheck.
View 2 Replies
View Related
May 7, 2012
I have recently inherited a few networking responsibilities in an SMB network. Nothing overly complicated. Here's my issue, there is an ASA 5505 used for VPN and in the near future a DMZ. I can connect via the console but I'd rather use ASDM. The problem is that I can't get it to connect. VLAN 1 (Inside) has an address of 192.168.200.254. This is in ethernet 0/0. I have a laptop plugged into ethernet 0/4 and the laptop has an address on the same x.x.200 VLAN. I can ping the VLAN1 address, but I can't use http://192.168.200.254/admin to get to ASDM.
how I can do this? What I should check? Can the internal webserver that hosts the ASDM be turned off?
View 1 Replies
View Related
Aug 19, 2012
my ASA 5505 just woke up one day and didnt allow me to login to it with ASDM. i can console in though but telnet, ssh and asdm will not work. it just times out.
View 4 Replies
View Related
Jan 9, 2013
Remote LAN pool is configured as inside. Route is proper. I am able to open 443 port from the remote LAN pool on the ASA. That means, the port is open from the remote pool. No response if I try https on the browser.
View 11 Replies
View Related
Jul 10, 2011
I recently bought the ASA 5505 but am unable to download the ASDM Launcher or VPN client software
View 2 Replies
View Related
Apr 30, 2013
I have a Cisco ASA 5505 V10. I've upgraded it to use asa825-K8 & asdm-649.103. Before the upgrade I was able to get to the ASDM via https://192.168.1.1. However after the upgrade I just get a page cannot be displayed. I have rebooted the ASA.
View 4 Replies
View Related
Mar 6, 2011
When I run the Upgrade software from Cisoc.com Wizard in ASDM i get this error:
You are not authorized to download encrypted software. Please register your self for this service.
CRYPTO_REQUEST_URL
View 1 Replies
View Related
Oct 18, 2012
My macbook pro recently upgraded to the last version of java and now I can open the ASDM for my Cisco ASA 5505, when I try open, only show me the window of Java 7 ..., and don't load the ASDM.
View 15 Replies
View Related
