I have been reading through the documentation on implimenting CABC. I want to confirm what I think I know. A simple example - SMTP. Email server on the inside needs to talk to external email servers and vice versa. SMTP needs two way port 25. If...
Hi,I've migrated from cisco 1721 to 1841.This router has 2 adsl wics(1wic 1hwic) and one lan interface with 2 lan addess configured. Behind the router is a firewall.See the attached file.This firewall enables a tunnel, because of this there is no vp...
I have an ASA 5505 with a T1 (outside, 1.1.1.1) as the primary route, then a DSL line (backup, 2.2.2.2) as secondary, all with LAN (inside, 192.168.1.1).Right now it successfully injects the backup route if the outside goes down, then switches back o...
Hi all,I'm using a 877 router with IOS firewall (c870-advipservicesk9-mz.124-6.T10), and would like to translate all web traffic destinations (80, 8080) to a fixed destination IP address and TCP port to go out the internet link interface.ie. if a LAN...
Hi,I'm running 7.2 on a pix 515e restricted licence.The firewall is set to transparent mode.Licencing states the followingLicensed features for this platform:Maximum Physical Interfaces : 3 Maximum VLANs : 10 Inside Hosts...
I have the following scenario; due to a 3rd party issue they have no route to my Remote Access VPN IP POOL and their default gateway doesn't hit my ASA.I want to enable NAT so that my VPN IP POOL is hidden behind the inside interface of the firewall ...
I have been having an issue with WCCP connections from our Pix firewall losing connections and not re-establishing from time to time. I think this is likely due to bug CSCsy82260 which says fixed in 8.0(4.34) or 8.0(4.36). I am at version 8.0(4.28)...
All,I've got a situation where I need to log http requests from a couple of systems. I also have regex class-maps that I match on to restrict only certain users from getting on the web.The default inspection is applied as a global policy, and my rege...
I have a system that we NAT through a firewall. A partner whom we are setting up a VPN connection with only will accept registered IP addresses. The way our network is setup, I will have to NAT this address again to a public IP. So I am wondering wha...
Hi to all,I have this scenario, I have a pix firewall and in one DMZ i have my servers, i have allowed only the https access to one of them from the outside interface but if i make a telnet to the server for any port the firewall gives the impression...
I am getting the following error on ASA which has AIP-SSM module when pinging out through ASA (AIP-SSM)%ASA-4-420002: IPS requested to drop ICMP packet from 'source' to 'destination What can be done to make the ping work.
Hello there, I've recently connected a Cisco 871 router to a ISA 2004 server (site to site VPN). The connection details are listed in this Microsoft article: http://technet.microsoft.com/en-us/libr ... 02442.aspx The tunnel works, but it tends to dis...
Dear Experts,I Have ASA 5510 and I have a limited number of Real IPs, I need to get 3 of my users an access to a service whose their providers asked me for their real IPs to add them to their Access List.Actually I want to use PATing instead of NATin...
