Hi,We have a FWSM version 3.1.19Our internal DNSses are not able to resolve certain addresses for instance www.inventionmachinecommunity.comWe have configured: inspect dns maximum-length 2048...and even tried 4096 but this doesn't help.Whe...
Hi everybody,i' m a new on administration of ASA, i'' ve one appliance ASA 5510, v8.X and asdm 6Xhere u have my configuration :interface Ethernet0/0 description Link To WAN nameif outside security-level 0 ip address 212.96.23.186 255.255.255.252!inte...
I am having a problem with security levels on my ASA-5505 with 8.3.1 installed.Specifically I am trying to make a http connection from a host at IP 192.168.2.108 connected to Vlan20 (Public) security-level 50 IP 192.168.2.1, to an external web host a...
Hi,I wan to upgrade my SSM from 6.1 E3 package to 6.2 E4.Part:- ASA 5500 Series Security Services Module-20" PID: ASA-SSM-20Can someone help me what all files i have to upgrade while doing the upgradation it would be great. I am just confused which f...
Hi, I am new to CISCO appliances and while configuring my ASA 5505 I changed the IP address range of the internal network. Obviously I made an error because I cannot reach the box neither at the old nor the new address. How can I restore the interfac...
Hello to those interested I'm trying to setup a zone behind my firewall with complete publicly routeable IP addresses for 3 servers. The reason I'm doing this is I am in the network setup stage of an OCS implementation, and OCS connections don't beha...
Hi Team,while traversing through Cicso ASA Firewall 5520,VPN sessions are disconnecting.In Accelissts for VPN-Outbound traffic from LAN to Client VPN ,we have allowed all Ports.Is there any inspection Rules are cause for this issue.In ASA Firewall,pr...
HI,Question regarding the acl operation of ASA.Setup using ASA only.inside interface - this is where the server is located.outside interface - this is where the user is located.Test 1.Policy - allow the telnet connection from the user to the server ...
Hello Experts,Have few questions which came across while doing NAC work at one of our subsidaries. If there are certain user ports which are not enabled for NAC profile, is there any way ( except physical check on user laptop by enabling all ports & ...
Hi,I need to configure the edge switch port to keep serving non-Cisco IP phone on deploying NAC as OOB VGW. I appreciate your advise, but make sure 802.1x solution as the last option.ThanksMike
HiEmail Server is hosted at ISP, users outlook is configured with ISP SMTP and POP information. when the user sends email with more than 3 receipient address the email get stuck in users Email outbox. If the Email is composed with single receipient i...
Im very much a noob on this but i need to move from a pix 515e. V 6.3 to a asa v 8. From what ive read i can use the pix to asa tool to get the converted configuration file to the new asa. So far so good, however, the pix has conduits which i read ...
I have the following in my deployment:Server --- ACE 4710 --- ASA 5520 -- Routerfrom the server I can ping the inside ASA.but can't ping outside ASA or inside Router.from the ASA I can ping Outside Router, Server, and The Virual IP Address of ACE.the...
I can get to the untrusted certificate on https....coming from my address 192.168.133.205..but i get deniedam i being denied by access list?..I dont see how since intital SSL begins..these are the log from the ASA---10.11.24.11 is the ip of one of th...
