Hi,I want to check how to check whether a particular port is opened through my ASA?Say I want to see from my Pc whether port 21 is opened or not?Any command for same?Reg,Sushil
Could one of you excellent experts please cast your eye over the below config please. We have a site to site from this ASA back to our ISA server. It works but every day it goes down while the SAs are renogtiated and recently users are having to pi...
Hi all,I am trying to apply a CBWFQ/LLQ on tunnel interface and I get the messageClass Based Weighted Fair Queueing not supported on interface Tunnel0What other options I have except applying CAR?thanks
I am having trouble with RDP through my LAN-to-LAN tunnel and I keep reciving the below message in my log. Do you have any idea what could cause this message and how to fix it?209005: Discard IP fragment set with more than 1 elements: src = 196.12....
We are running a 5510 router, ASA-SSM-10 sensor ver. 6.1(1)E3 w/ sig version of 368....I was wondering if there is a way to both log mac ID's if certain signatures fire? Also when we have a client VPN into our network can we grant access by mac ID in...
I have a pic 506e and i need to open up port 2122 to accept incoming commections to the internal IP of 10.9.2.202 I have posted my config below.any ideas?PIX Version 6.3(5)interface ethernet0 autointerface ethernet1 autonameif ethernet0 outside secur...
I am attempting to provide my FTP connection with a friendly name. Currently, user type FTP://the domain name.com in order to access FTP services. My question is how do I simplify it by making it FTP://ftp.friendly.com.Do I simply add the domain na...
HelloI have a customer who has a guest-VLAN on his ASA-5520. He wants to log all traffic entering and leaving this interface, but not the other interfaces - how can this be accomplished.any help is greatly appreciated
Anybody have any idea what this FWSM error message means? According to "sh resource acl", I'm only using about 20% of the available ACEs.Cebalrai/BANNER# config tCebalrai/BANNER(config)# access-list sctprod-ingress line 20 extended permit tcp host ab...
I am trying to establish a vpn tunnel from windows 2003 server which is behind a PIX 501 without any success. I am able to establish a vpn session if the server is not behind a Pix 501.Any Iseas why?Thanks for any help.
We had trouble after a brief ISP outage with one of our VPN tunnels not coming back up. All other tunnels came up and configuration was not changed on either end. We spent several hours last night troubleshooting with the connecting company and wit...
Hello everybody!I'm having some issues with a IPSec site-to-site connection between my home 827 and a remote Endian firewall.The problem is: the connection is established and I can ping remote router's internal IP address but not any other machine in...
I am deploying nac in-band L3 VG, the untrusted site is conected to a L3 switch with 3 diferent subnets, from that switch there are 3 diferent wireless networks, the trusted site is conected to a L2 switch and from there to two ASAs in fail-over.Prob...
Hi Friends,I want to place the IPS in inline mode between my 6513 core switch and wan router but IPS has only one sesnsing interface.so how to place it in inline mode?I have four vlans 110,111,112,113 configured on my 6513 core switchplease help on t...
