Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
this is a bit of a double post so I apologize, but I need some helpthe basics: 2 ASAs, 1 is between our office and the internet, the other is in our office and currently between the office network and another subnet I am using for testing1st ASA (ins...
Hi,I have a following situation and I am not quite sure how to go about it:On a customer site we need to establish an internal network for our equipment (PLCs), which is to be separated from their local office/plant network. We are currently thinking...
Hi,I was just wondering about best practices when it comes to remote administration of the ASA.It appears that SSH is the best option, but the one thing that bugs me is that I would have to allow SSH access on the outside interface for all IPs since ...
hi,i have a ASA5510 with the SecPlus licensecurrently physical interfaces 0/0 and 0/1 are in use0/0 outside0/1 insideI have now enabled 0/2 interface and I am trying to test creation and use of VLANs on that interface. hence i created a subinterface ...
Hi,I am very new to Cisco hardware and VLANs in general. We have a very simple network setup (ASA5510 set up as a router/firewall and many switched of which I am only trying to deal with a Cisco Catalyst 2960).WHat I was hoping to do without any addi...
It's EtherNet/IP. apparently industrial ethernet. I tried to google cisco with enip and came empty handed. we are trying to see if allen bradley (their PLC) has suggestions. Worst case, we put a PC on the inside with the appropriate software and remo...
Jon,your idea was great and for the most part it is working. However there is one stumbling block right now that I am not sure aboutIt appears that the development software for our PLCs uses ENIP protocol to detect the presence of the PLCs on a given...
all this and one expression would have saved us a lot of typing let me try this setup (have a test env set up in our offices) and I will let you know how it goesMany thanks for the patience and effort
ok, I think I may have wrapped my mind around what you are saying....Are you suggesting to use 1-1 IP mapping?meaning, assume I have 10 PLCs (10.0.0.10-10.0.0.20) I would need to essentially ask the customer to "reserve" 10 192 IPs (192.168.1.100-192...
if i understand this right you are forwarding all traffic from 192.168.1.10 to a single IP/PLC(10.0.0.10) on the inside networkOR is the 10.0.0.10 the ASA inside interface IP?also the part that is still confusing me is this:assuming 172. is my source...
