i have a CISCO ASA 5520, trying to lock down the tunnels to one direction using an ACL. It doesnt seem to work. Is this the preferred way to limit traffic?ASA 5520ASDM: 6.3(4)53ASA 8.2(3)
Hi,Does the "Number of packets" option mean that all the packets specified must exceed the threshold, or is it only one that can be missed? The internet connection for the config below is not very reliable and ping responses are regularly dropped. I ...
I have been fighting this for longer than I would want to admit. So any help would be greatly appreciatedBasically we need to connect a client via IPSEC to an ASA 5510 in Brazil and then using the same 5510 send that traffic source and destination N...
Hi,I have a network protected by a pair of ASA 5520, running 8.04.I do pretty much default dns inspection:policy-map type inspect dns preset_dns_map parameters message-length maximum 1024policy-map global_policy class inspection_default ... inspec...
Hi experts, I have Cisco asa 5505 with 256 mb RAM and I have one GB RAM stick from an ASA 5520. Now, Can I replace the RAM stick in 5505 with this 1 GB RAM stick that I have from a Cisco 5520 without killing the 5505 Device ? Thanks Manish
I received the following error on the FWSM. the IP in question is for a particular server which is part of a group servers and all rules in FWSM apply to the group servers. The user however only have problems accessing this 1 server and not all the s...
I have just been told that ASAs don't support a /31 assignment on an interface because they don't run IOS. Is this true? Also, can anyone point me at any official documentation stating either way?All I have found is this [1] which just says "Do Not U...
Got a small issue... We recently changed ISPs from Verizon T1 to Comcast fiber.The only change made in the firewall was the outside IP address, gateway and mask. No changes on the internal network or the interface.After a power cycle everything is...
I have a requirement to upgrade a a pair of active/passive FWSM's to get around a specific bug: the code is currently 3.1(1) and it's running in a 6509-e SUP-720-3B (12.2.(18)SFX8). In view of the available downloads the Safe Harbor logo seems to hav...
I need an answer to a question concering our Cisco ASA 5505. We are working on setting up a VPN and there are two questions the contractor on the other side of the VPN is asking that I have tried but have yet to find the answer to.What is the Renego...
Ok so here is the scenario.1) create 3 sub-interfaces on a physical interface.2) create a VLAN and assign the same VLAN to sub-interfaces.3) create 3 contexts and assign them to sub-interface.Unfortunately I cannot assign the same VLAN to the 3 sub-...
The Cisco IPS 4240 is a little too expensive and has too much "horse power" for our needs. I know I can connect the AIP-SSM to our ASA 5510 to scan traffic going through the ASA. What if I have my core router on our internal network send all traffic ...
Hi ,I want to configure Qos for 2 diffrent Vlan 2 , each vlan for 2 mbps bandwidth .(VLAN details VLAN 10 (10.10.x.x /24) and vlan 20(20.20.x.x/24)Is any difference regarding initials configuration B/w ASA 5520 and 5585
