Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,
I'm looking to roll out a few 5506-X's to our branch offices that have between 2 and 25 users on them. At the same time I'm looking to get them to join our OSPF backbone but I am a little concerned about their ability to cope with the enabl...
Hi,
I am trying to create NAT rule that will allow clients on the internet to connect to the ASAs outside interface on port 242, have the packets D-NATed to a server, 172.22.0.65 on port 22, inside interface but when the packet reaches the server ...
Hi, I have a pair of ASAs runing version 9.1 at the remote site and 8.4 (4) at the local site. When sending traffic over the tunnel from the local to remote, I can see in the IPSec SA the encap packet count increasing locally and the decap count incr...
Hi, I am looking at a deployment of a Nexus 6004 and 6001 with FEX 2232TM-E between the racks in our DC enviroment and have come up against a bit of a problem in that I don't seem to be able to find out what cables I need to use to connect the FET-40...
In this case you are relying on the interface security levels to permit the traffic to the Internet. Traffic will flow from higher to lower security level interfaces (no ACL needed to permit) but not the other way round - here you would need an ACL t...
A helpful tool to use is packet-tracer, it will tell whats happening at each stage of the packet processing.
packet-tracer input inside tcp 192.168.3.10 1234 8.8.8.8 80
Try this and then use packet tracer again:
access-list in-out permit ip 192.168....
Heh, can't really argue with using the ADSM for a quick 'n dirty view of whats going on on the ASA, no additional config needed and no 3rd party tools. You forget there is some value in that when you are 100% CLI!
Hi,
Solarwinds is definatly not free for life, not sure about ManageEngine though. Personally for small deployments I have found PRTG Network Monitor to be an excellent started tool that, after the 30 day one month unlimited trial will continue to w...
Thanks for the feedback, definitely depends on what the use case is whether or not it will be suitable. SSL decryption would be nice, this post suggests 60 - 80% performance hit with it enabled - not sure if they also have IPS etc enabled.
I suspect ...
