i recently get high speed link for my compagny to replace the old frame realy.the internet service provider gave me a non routable range to set on my asa like this : [code]then the ISP tell my public ip wan range was x126.96.36.199/29.i made this kind of configuration works when i put a cisco routeur in befor the cisco asa like this: [code] it is possible to make this works on cisco asa 5510 without putting a router in front ?if it works problem can happen to establishing vpn from the outside interface having a private ip ?
I have 5 workstations with 2 servers but the backup server (black) is shut down intentionally.I have 1 cisco gigabit unmanaged 8 port switch and 1 cisco 1941 vpn router.The cisco 1941 vpn router is configured for IPVPN connection to other branches.
1. Configure NAT to enable the 5 workstations to be connected to the internet thru the router to the ISP. 2. Configure NAT to enable the server to be accessed from outside using the public IP address provided by the ISP. [code]
1. I can ping other pc on 10.71.5.0/24 network. 2. When I typed in the ISP's public ip address on the browser, i got into the modem user interface for configuration.
I still can't connect to the internet. When i do tracert, it stops on the 192.168.15.1 hop and didnt continue. This shouldn't be the case since i want to connect using the GE0/1 outside port for the internet.
I'm a heavy PC Gamer, I play games such as World of Warcraft, Borderlands, Call of Duty, Steam Games, I also know my way around fixing internet issues, But this one just seems to have gotten me off guard, Recently, 1-2 days ago, I was browsing the internet like a normal day, and It was late, so I decided to go to sleep, Turned my computer off, Woke up the next morning, Turned it on, It then shows that I kept getting kicked off the LAN for some reason, It was like this[CODE]
I have Internet connection in Ethernet Medium connected to a L2 Switch (Cisco 2960). I have 2 Routers (Cisco 2900). I have a webserver to be accessed from Internet. The physical IP address of the server is Private range.
I have configured Stateful NAT as below
188.8.131.52 is Static NAT to 10.1.1.3 using redundancy
Though HSRP is working good, when RTR-1 is down, I am not able to reach Webserver (10.1.1.3) using RTR-2
We found in the that ISP Switch, that even when RTR-1 is down, the MAC address for 184.108.40.206 is still present one pointing to RTR-1 and other pointing to RTR-2. There are 2 MAC address entries for 220.127.116.11
I have purchased a domain name through a registrar. I currently have a hyper v lab set up at home with a domain controller/dns server and am thinking of starting a web server on either Apache or IIS on a different virtual machine. I want to point my domain name to my home web server.What do I do I have to do at my domain name registrar? I have to point a type of dns record to my home server's public IP and maybe vice versa.I have a static IP at home. Do I have to create some DNS records pointing from my domain name registrar to my server at home using my PUBLIC ip address? If possible please provide specifics on which records I should point to my home server PUBLIC ip address and if any DNS changes need to be made within my domain. Also if any records on my home domain (windows ad domain setup)
I seem to be able to find a lot of info on Apache and IIS but not a whole lot of info on how your web domain name registrar relates to your own web server . I'm not really interested on IIS or Apache specifics but more interested in the fundamentals of how a domain name registrar (GoDaddy, or any other registrar/host) needs to be pointed to your web server and vice versa. I know a lot of people on forums tend to point to links or tell me to go to google but I find it hard to learn that way.
Recently, I've been having significant problems with denial of service on our ASA-5510. Two IP addresses in particular attack my ASA regularly. What kind of rule do I need to create to deny these IP's access to my firewall?
I've came across IP address that aren't enough for some users in the company. The IP addresses are more than enough to cater to the user's notebook or PC. However, some users does not know that there are actually limits to the IP we have, so quite a number of them actually uses their mobile / pads to tap the company's wireless.
I was wondering if i could restrict that particular user from tapping onto the network. I know it sounds a bit impossible because DHCP doesnt have that smart function to block whoever we sees deemed as a "nuisance".
Bought DIR-655 from Amazon. Rev. B. Come with 2.00NA firmware. Updated to latest one, and there are a lot of problems, to most of them, I was not able find any solution. Here they start:
1. WIFI SPEED PROBLEMS.No matter what speed, parameters, channel, mode, etc I select, router keeps working on 20mhz channel width. So I never get speeds above 65 mbit. In absolutely same conditions, my DIR-300 B1 (with DD-WRT firmware) gives me stable 150mbit. SO I KINDLY ASK, MAYBE THERE IS A WAY TO FORCE "40 MHZ ONLY" OPTION?
2. PASSWORD PROBLEMS.Router came with no admin password, I enter new password, hit "update" it says - wait 20 sec, after that, login page is displayed, but, new pasword does not works! since it asks again for empty password!
3. FILTERING PROBLEMS.I need to block certain IP address to be accesed by all my computers. Say this is 18.104.22.168 . So I added inbound filter rule, to block access to that IP. It does not works - IP is still accesible.
4. MORE FILTERING PROBLEMS.Since above mentioned method does not works, I have to use "ACCESS CONTROL" feature. It does works, but it causes another problem, with access control enabled, all webpages with form submit stop to work. For example, if I'll have that feature enabled, when I press "post" on this webpage, it instantly will go to "this page cannot be displayed".
I bought this router solely for one purpose - I was happy with speed of my DIR-300, but I needed gigabit for my computers. So I thought, instead of buying separate switch, I'd better buy a router with gigabit. I was suggested to get TP-LINK 1043, since it's quite popular, alternate firmwares available and so on, but I refused to buy it, since I thought that some chinese company does not worth my attention. So I bought this D-Link (for almost 2x price of TP-Link) and having huge problems as you can see.
So if the PPTP server is enabled, and "Block MAC address not on the list" is enabled under the DHCP settings, will the PPTP client get an IP address?Similarly, if the PPTP server is enabled and the range of IP addresses configured on the PPTP server screen is outside the IP range of the router due to a subnet mask (like 255.255.225.248 for example), will the IP still be assigned to the PPTP client? If assigned, will that IP have any connectivity to the LAN?
I want to do what I thought would have been a simple enough task - block my kids phone/computer after certain hours. Instead of blocking the specified MAC address(es), all my computers does not have internet access. As soon as I disable the policy, internet access is on again. Here's what I did:
I've been keeping an eye on my IPS report tab lately and have been watching a large number of ICMP_SMURF and DOS attacks originating from chinese ip address's. I know I can probably block the offending ip's through the ip based acl tab in the firewall settings, but I'm kind of a newbie how I can block certain ip's from touching my router?
I have a WAG160Nv2 and I want to block specific external ip addresses from trying to get at our server that uses the WAG160Nv2 as an internet gateway. It's not immediately obvious if this can be done from looking through the config pages.
partition the departmental IP network address block to create a staff and a student subnet. Each of these will be identified by its own network address and netmask. It is university policy that you must be economical with the IP addresses. That is, the subnets must be as small as possible, but they must be large enough to accommodate the maximum number of hosts you were given. Also, it is university policy that the respective gateway router to the outside world should always be given the highest possible host IP address in the subnet. The student subnet should have a higher IP network address than the staff subnet. The network must be able to support up to 60 machines on the staff subnet (not counting the router) and up to 120 machines on the student subnet (also not counting the router).
IP address/netmask University network address127.158.128.0 University network mask255.255.192.0 University internet gateway IP address127.158.191.254 Department network mask255.255.254.0 Department router address127.158.129.254
Suppose that the network address of the departmental network is 127.158.128.0 (calculated by AND between Dep network mask and Dep router address)I know that 60 machines would use 6 bits for the staff subnet.the netmask of staff would be 255.255.255.192.how can I figure out the the IP network address of the staff subnet.I have worked out the range for the staff subnetwork.
I have been looking into this router, I would like to know if I can enable Parental controls or access restrictions to block a MAC or IP address; from 03:00 AM - 06:00 AM ?Instead of Midnight to 6:00 am.My E4200 works just fine, Just would like to know if the EA6500 Can do that ?
my private ip add is been hacked by someone, I have chk from various sites but the host name is unavailable so pls let me know how to get the host name of that pc & how can i get my ip 10.62.11.33 back to my org
Is it possible to use 1 private IP through VPN and same private IP mapped with Public IP? For example 192.168.0.1 is configured in VPN tunnel. i m able to ssh on both ends. ( VPN phase 1 and phase 2 gets completed)But when i map 192.168.0.1 with some public IP problem starts. when i try ssh i see public IP in my destination firewall logs. IPSEC: Received an ESP packet xx.xx.xx.xx "mapped public IP". The decapsulated inner packet doesn't match the negotiated policy in the SA, The packet specifies its destination as