Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We are sending traffic sourced from the ASA's inside interface over our l2l vpn tunnel. We need to NAT the inside interface's IP address. NAT works when we ping *to* the inside interface over the tunnel; we receive replies and we see hit counts on th...
When I attempt download a file from our public FTP server to any of our 3850's I get the below error message.
%Error opening ftp://*****:*****@11.22.33.44/cat3k_caa-universalk9.SPA.03.06.08.E.152-2.E8.bin (Incorrect Login/Password)
I'm using this com...
We have a single router (4331) that connects to our ISP. We do PAT (dynamic nat) to give users internet access. Now typically we'd have an OUTSIDE-IN ACL that blocks traffic from the internet. My question is, if we're using PAT and have no static 1-t...
We're performing an upgrade and will need to reboot our ESA (C100v). We were told to suspend the listeners prior to reboot and make sure there's no mail left in the queue. My question is, does our email server still receive emails while the listeners...
You can see the bgp topology table that I have two routes for 10.32.0.0/16. The one for EIGRP is put into the routing table even though BGP has the lower administrative distance. Can someone help me understand why this is the case? And how would I ch...
So I read on another forum post that the ASA will never NAT traffic sourced from its own address. Looks like that's the issue.The ASA also doesn't seem to have an "always up" interface like a loopback, so I think i'm out of luck on getting this to wo...
We ran a packet capture on the ftp server and tcp debugs on the switch. Both sides were saying the other one sent a tcp reset packet.
The issue turned out to be an IPS appliance sending (spoofing) RST packets to both the server and the client.
