I've configured LDAP authentication to allow access if members are a member of the "VPN_Users" Group. This configuration is working, but only for some users. For other users it isn't. The output of the 'debug ldap 255' shows an output of member...
When attempting to add a host to an object group I'm getting an 'ambiguous command' error. This is on an 8.2.4 ASA 5510, and ASDM 6.4.1. Here's the output from ASDM:[OK] object-group network Optim object-group network Optim[ERROR] network-obj...
I'm terminating SSL on the CSS for a website that we want to force users to use HTTPS to get to the site. If the user uses HTTP we want the Load balancer to change it to HTTPS have the user use the HTTPS url for all queries to the site.I've looked a...
I have an ASA5505 running 8.2.1. Will there be any problem if I downgrade and reboot it into 8.0.4?The reason I'm looking at doing this is since I switched the customer to this firewall/ISP connection they've been unable to HTTP upload to various s...
We're attempting to get XTP traffic to traverse a VPN tunnel between 2 ASA firewalls running 7.2.3 code. The traceroutes show that the traffic gets to the firewalls but does not get through the VPN tunnel. What options should be set on the firewall...
That was it! Thanks so much. I had never seen that before and didn't realize that having a named object called "host" would cause so much problems. It makes sense though. The system thought I was refering to the object "host" and wanted a subnet ...
Here's the output from using ? during the command input:sso-fw(config)# object-group network testingsso-fw(config-network)# network-object ? network-object-group mode commands/options: Hostname or A.B.C.D Enter an IPv4 network address X:X:X:X:...
Except for the fact that we had the same error running 8.0.4 and I rebooted to apply the update to 8.2.4 only to continue to get the error.... It could be a bug or something odd in the config. Thanks for checking. I'll have to see if we have smart...
Nope, on this ASA new object groups have the same problem:sso-fw(config)# object-group network testingsso-fw(config-network)# network-object host 10.1.1.1ERROR: % Ambiguous command: "network-object host 10.1.1.1"sso-fw(config-network)#I have other A...
I would consider removing the PAT configuration for the ISA server. It may be conflicting with the Static NAT configuration.global (Outside) 1 10.3.0.3 netmask 255.225.255.255Try using a different IP number for that rather than 10.3.0.3. Allow the ...
