Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
HiI am running 8.6(1)2 on my ASAIt's a lab environment and I am trying to figure out how to do port-forwarding using manual natFor e.g. I tried following but none of them work (Only one of the following was activated on the FW at a time) nat (outsi...
So site A has 192.168.1.0/24 on inside and site B has 192.168.2.0/24 on it's insideWe have ipsec L2L tunnel. We want filtering so that only ssh traffic goes over vpn (bidirectional)on inside int of site A we have acl_inside_site_A permit tcp 192.168...
HiI am trying to do content-filtering over ssl VPN (clientless) on ASA 5505Above command is supposed to block anything with img html tag but it doesn't seem to be doing so. # sh run group-policygroup-policy clientless-grp-policy internalgroup-poli...
HiSo we wish to implement IPSec remote access vpn with the condition that employees should be able connect to this vpn only from company issued laptops and not from any other computers. I assume using client side certs is one of the ways to do it but...
So if you remove routes from branch fw then how is the traffic initiated from branch going to ring up the tunnel?Sent from Cisco Technical Support iPad App
How about creating an arp entry for the ipFor e.g. The ip is 1.1.1.1 on the inside with Mac address xxxx and 1.1.1.0/24 is the dhcp pool. You don't want to hand out 1.1.1.1 via dhcpThen you add an entryArp inside 1.1.1.1 xxxxSo that Asa excludes 1.1....
I actually figured it outWhat I was doing was that I had created tcp-8080 with service tcp source eq 8080 while the predifned tcp-www is of type service tcp destination eq wwwI had to change tcp-8080 to service tcp destination eq 8080 and got it wo...
For argumen
t's sake lets say pipe coming into the building is 100Mbps
You want to make sure that one section of the builiding gets at least 20Mbpb (20%)
Lets say that the one section which is supposed to get 20% BW min is on subnet
192.168.100.0/...
