Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I was curious what would happen in this particular scenario with VTP:I'm pre-configuring a 2960 for future deployment and have the switch in 'transparent' mode right now. Being in transparent mode, I'm configuring various gigabit ports with what will...
I was hoping to allow my local LAN (192.168.60.x) the ability to access the internet through my ASA 5505 while still maintaining the VPN tunnel that is required. I just recently added a number of access-lists to my config, which resulted in internet ...
I have a web server on our inside network (10.15.20.20) that I'd like to have receive responses from a /29 block of external IP addresses within my outside interface's IP block. So basically I'd like any web traffic that hits 222.222.222.176/29 autom...
Greetings. As you can see by the configs, I have a simple two-way VPN tunnel from Virginia (10.10.50.x) to Houston (192.168.40.x). The tunnel is up and all is well. What I'd like to do (but for some reason am unable) is to allow users in Virginia (10...
Greetings, All.Due to a *very* stringent security policy, the users behind a specific ASA 5505 (v 8.04) will only be allowed to access a limited number of web sites. For simplicities sake, let's just say they can only access www.espn.com and www.yaho...
Ahhh...I was not aware of that. Makes sense though, now that you reference it.So if I do:access-list inside_acl extended deny ip 192.168.60.0 255.255.255.0 192.168.40.0 255.255.255.0 at the end of my access lists for each remote vpn(as well as a deny...
Great call. I'll probably try this method in conjunction with only allowing 80, 53, and 443 for the local LAN, instead of 'any', as I'd like to restrict things a bit more.Good stuff. Thx.
svaish,Thank you for your response. I tried doing that, but it won't let me give a netmask of 255.255.255.248 after my 222.222.222.176, which would fulfill my /29 external IP requirement. By doingASA(config)# static (inside,outside) 222.222.222.176 1...
You understood correctly and thank you for the link. I had actually seen that thread earlier and from what it seems, I'm going to have to go that route. I was trying to avoid having to create separate access lists for each as one of my requirements i...
