object network VPN_NET subnet 192.168.10.0 255.255.255.0 object-group network LAN network-object 175.2.100.0 255.255.255.0 network-object 175.3.100.0 255.255.255.0 Auto NAT(or PAT) NAT (INSIDE,OUTSIDE) source dynamic LAN interface Twice NAT or Ide...
Forum Posts
I am trying to add a management network to ASDM to manage an ASA. The subnet mask of this network is 255.255.252.0. This subnet is not listed as one of the choices, and if I type it I get "The network address is not valid". Can I not use this subnet ...
I have a server that downloads a lot of data from the internet want, I to configure policing to reduce the input, output of the server to CIR 25000, but I see overall utilization of the outside interface of 100% during download access-list QoS exte...
Hello, Could someone please help me out here:I have a 5506x at my home office Software Version 9.9(2), and to provide Internet access I add a PAT rule. I Also need to fwd a port and after creating the access rule I also created the NAT rule for that....
Resolved! SSH Access to Secondary ASA
Hi, Can we ssh secondary ASA firewall from primary. I cant access secondary firewall from jump server and wana access it from primary firewall we have ASA version 9.10
Hi,I have ASA 5520 and when I log into the CLI there is a constant filter of logs coming in, so many I can do anything. What do I need to stop these and maybe jsut show critical issues and not rules being triggered etc?Thanks
Below is the topology I have. From server1, I'm able to SSH to the VLAN2 IP of sw1. However, when I create a VLAN3 interface and assign an IP to it, I'm no longer able to SSH to the VLAN2 IP of sw1. I'm still able to reach it via ICMP, though. SSH/IC...
I am not very experienced with ASA and always wondered why I can't see any log event in log viewer when I click the show log in ASDM on an access rule having debug level logging enabled, tons of hits and log interval is also set for 10 seconds. What ...
Resolved! ASDM vs Management Center
We're considering getting a FirePOWER module for our ASA 5516-X. We'd like to use it primarily for Geo-Blocking. Can this be done from ASDM, without the Firewall Management Center? Also, are their limitations to using ASDM to manage FirePower, versus...
I am currently trying to simply ping through my ASA from Router 1 at 10.10.0.1 to my Router 7 at a public ip address. But I am unable to ping through. I have set up nat and have applied the access rule permit ip any any, and have applied them to eve...
Hi All, We have a Cisco 1941 running IOS 15.5M and the Zone Based Firewall with inspect rules.I need to de-configure zone-based firewall completely off the router. Unfortunately I have only remote connectivity. What is the best way to do this? Does a...
Resolved! ZBFW simple question
Hi, It's very basic question but I would like to be sure because I didn't find a clear and simple answer.When I setting up a class-map to inspect traffic (match-any) I need to choose which protocols to inspect but do I understand this correctly if I ...
Hello, Cisco VPN clients can't ping the inside interface of my ASA, neither ASA Can't ping the directly connected Users like 192.168.10.1.(ofc they are connected from the outside interface) S* 0.0.0.0 0.0.0.0 [1/0] via 135.110.223.2, OUTSIDE C ...
Hello, How can I remove the web login/portal-login feature, from the WebVPN/SSL-VPN, so users have no other option than connect through anyconnect client and not the web?what command is missing in this template, and what command I shouldn't put?ASA1(...
