Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi there,I have an upgrade planned on our ASA5520's running an active/standby failover scenario, moving from 7.2(4) 8.2(5)Reading the release notes and a few other documents online I can see that there are no major syntax changes so should be good to...
Hi there,I am working on a ASA5520 running asa724-33-k8.bin and have been seeing some strange beheviour in relation to ACE additions.On particular access-lists there is an implicit deny; so any new entries are added before this line.However, once the...
Hi there,I have an ASA5520 firewall and have the following already in place :name 123.123.123.123 EXTERNAL-NATaccess-list OUTSIDE_OUT extended permit tcp host EXTERNAL-NAT host xxx eq 5061 access-list OUTSIDE_OUT extended permit udp host EXTERNAL-NAT...
Hi there,I am currently using a C3560-24TS running c3560-ipbase-mz.122-25.SEE2 for a top of rack access switch.From what I can see, to use ipv6 based access-lists I would need to upgrade to the advanced IP services image.I was wondering if any one co...
Hello,I am currently setting up a few switches and one configuration point is to secure acccess via telnet from only certain IP'sI have created the access list as shown below :access-list 20 permit 192.168.1.0 0.0.0.255 access-list 20 permit 10.44.1...
A colleague suggsted possibly doing this on the ethernet header type instead : mac access-list extended IPV6_PACKETpermit any any 0x86dd 0x0 vlan access-map BLOCK_IPV6 10 match mac address IPV6_PACKET action drop vlan access-map BLOCK_IPV6 20 action ...
Hi BrunoAlot of people have their own views on which is best - the web interface or manually configuring and I guess it's just down to how you work.I personally prefer using the CLI as it seems to give you alot more granular control over commands etc...
This is resolved - for anyone else that may have an issue I didn't check my syntax; in conf t I should have been using :line vty 0 15and then apply the access-classSo, layer 8 error Cheers
