i need to deny specific network from access internet on ASA 5510
i need to deny specific network from access internet on ASA 5510
Dear all, I configured 2 pix 525 ( active / standby) / LAN Failover with 2 IP-Addresses in the same Vlan, they did work for about 1 day and then lost one of them.Tried to ping through the working one without success, the problem is that the working o...
Hi, See below my firewall rules.Despite the deny all, runnning nmap from outside still reveals open ports.----------------------------------------------------------------------------name 202.1.53.41 fw1.outside.irc.com interface GigabitEthernet0/0 na...
Hi Everyone, Need to config new site where users behind the context firewall need to access the internet. Setup is SW1----Vlan 26----Sw3-----trunk vlan allowed 26,27 --ASA---Outside int---Layer2 switch4-----Router SW2---vlan 27---sw3-----rest is sam...
I have an ASA 5510, and recently we had to move our web site to an external provider. However, portions of the web site still remain here on site. From outside, the web site operates fine, with the portions being hosted here as well as at the provide...
All, I am looking to see if host based internet rate limiting is possible on an ASA for internet (not intranet) traffic. Here is what I am trying to accomplish:- allow a single user 512Kbps per flow with a burst ability of 1Mbps- only rate limit on ...
I have a slight emergency that was dumped on me to be done this week.I have an ASA 5520 and need to setup a DMZ for one server. It need to communicate to one server on my inside network and to the internet over specific ports. I am not totally ignor...
I have a Cisco ASA 5510 (8.4.5) with a SSM-CSC-10-K9 module (6.6.1125.0.1140). Since the update of the 10-6-2014 we receive the following errors:GraywarePattern : Pattern Update: The download file was unsuccessful for ActiveUpdate was unable to extra...
I have a Cisco 5520 with the ASA-SSM-10 IPS Module. I am running version 6.1(2)E3. I need a way to whitelist an IP Address from a Security Scanning vendor. The vendor is Control Scan and everytime they try to certify our site it fails because the IPS...
Hi All,I am in quite the predicament, my company offers a cloud based infrastructure for customers who buy our software from us. We have a pair of ASA 5525-X w/ IPS with multiple vLAN's for each customers (inside) and one vLAN for our outside interfa...
Hi, We're using port based ACL in our ASA firewalls for site to site VPNs, it was working fine. However, after upgrading one of the firewalls to 8.4, we started to have issues. We then changed it to IP based and it fixed the problem. Are port based c...
I know I have to purchase a security plus license to get gigabit speed on the asa-5510. The problem is the system is fully configured and online and the ports I want to upgrade are not e0/0 & e0/1. Is there any reason to limit which ports can be upgr...
Hi Everyone.I have an internal web server that I need to expose to a large range of external addresses on port 80 only, and we may or may not be able to find out all of these addresses (although we may be able to verify that these address are correct...
Please help and suggestion on below point.I'm configuring vlan 3 on port 3 on firewall but is not pingable although I connect directly to the port.My goal is from my PC 10.10.10.X can access internet through vlan3 10.10.10.250. Here is my Firewall co...
Hi guys, I just have a doubt that, if I configure the active and standby mac address in failover, does it will cause any downtime? As I planning to configure the active and standby mac addresses in failover during production time and not wish that it...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
07-14-2025 03:53 AM | ||
07-09-2025 06:38 AM | ||
07-09-2025 06:36 AM | ||
07-06-2025 01:40 PM | ||
07-04-2025 01:59 AM |
User | Count |
---|---|
8 | |
7 | |
7 | |
1 | |
1 |