About abcdrohan

abcdrohan · 05-28-2013

HiI am running 8.6(1)2 on my ASAIt's a lab environment and I am trying to figure out how to do port-forwarding using manual natFor e.g. I tried following but none of them work (Only one of the following was activated on the FW at a time) nat (outsi...

abcdrohan · 09-26-2012

So site A has 192.168.1.0/24 on inside and site B has 192.168.2.0/24 on it's insideWe have ipsec L2L tunnel. We want filtering so that only ssh traffic goes over vpn (bidirectional)on inside int of site A we have acl_inside_site_A permit tcp 192.168...

abcdrohan · 09-20-2012

HiI am trying to do content-filtering over ssl VPN (clientless) on ASA 5505Above command is supposed to block anything with img html tag but it doesn't seem to be doing so. # sh run group-policygroup-policy clientless-grp-policy internalgroup-poli...

abcdrohan · 08-20-2012

HiSo we wish to implement IPSec remote access vpn with the condition that employees should be able connect to this vpn only from company issued laptops and not from any other computers. I assume using client side certs is one of the ways to do it but...

abcdrohan · 01-01-2014

So if you remove routes from branch fw then how is the traffic initiated from branch going to ring up the tunnel?Sent from Cisco Technical Support iPad App

abcdrohan · 01-01-2014

How about creating an arp entry for the ipFor e.g. The ip is 1.1.1.1 on the inside with Mac address xxxx and 1.1.1.0/24 is the dhcp pool. You don't want to hand out 1.1.1.1 via dhcpThen you add an entryArp inside 1.1.1.1 xxxxSo that Asa excludes 1.1....

abcdrohan · 05-28-2013

I actually figured it outWhat I was doing was that I had created tcp-8080 with service tcp source eq 8080 while the predifned tcp-www is of type service tcp destination eq wwwI had to change tcp-8080 to service tcp destination eq 8080 and got it wo...

abcdrohan · 04-23-2013

For argumen t's sake lets say pipe coming into the building is 100Mbps You want to make sure that one section of the builiding gets at least 20Mbpb (20%) Lets say that the one section which is supposed to get 20% BW min is on subnet 192.168.100.0/...

abcdrohan · 04-23-2013

Following should do itacl ABC 1.1.1.1 to 2.2.2.2static (inside,outside) 3.3.3.3 access-list ABCstatic (outside,inside) 2.2.2.2 4.4.4.4

Member Since	‎08-14-2012 02:15 PM
Date Last Visited	‎08-18-2017 04:00 AM
Posts	34
Total Helpful Votes Received	10

User Statistics

User Activity

port-forwarding using manual nat (not auto-nat) not working

vpn-filter and interfac acl restriction

ssl vpn html-content-filter images

Restict remote IPSec vpn from company pcs only

Re: Reverse Route Injection not working

Re: Blocking a MAC from getting IP from ASA DHCP

port-forwarding using manual nat (not auto-nat) not working

QOS for ASA

ASA 5520 7.2 Source & Destination nat