Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
So I've been banging my head on this issue for some time now and finally broke down and posting here hoping for some help.I have an ASA5505 at my house with my residential cable modem plugged into the outside interface and my LAN on the inside interf...
So my journey of configuring the ASA5505 I bought used off eBay continues.So far I have complete functionality and everything is working but now I'd like to lock things down a little tighter. Since this is a home firewall I would imagine the amount o...
Been wresting with this one for a bit not. Running IOS 9.2 on a ASA5505 Can anyone tell me how I could accomplish this? I know how to disable ping on the outside interface using icmp deny any outside but then when I try to ping an external ip the rep...
wondering if anyone has any tricks to allow a single /32 out of a /8 on a cisco non-asa firewall the network is 121.0.0.0/8 and I want to only allow 121.240.128.58/32 This is pretty messy with multiple lines of summery routes, is there an easier way?
Thanks for the reply Jody. I ended up getting it working using the following configuration items: icmp permit any echo-reply OUTSIDEicmp deny any echo OUTSIDE
Problem with that is there are other rules that the host must match against. If I just allow the host in the beginning it will bypass all other rules won't it.
This wouldn't be an access-list but an access-group applied to an interface on a cisco firewall context. So we have a customer who has an entire /8 blocked from attack but wants one ip out of that /8 allowed.
