Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all. We have encountered a perculiar problem with a pair of our ASA 5520 firewalls with 2 contexts(each context being active on different ASA). What we are seeing is that sometimes when we have a sudden increase of inbound traffic(mostly HTTP) tow...
Hi all. My organization is representing two ASN's over the same links one behind the other. As we have multiple internet links I want to make one internet link to have worse as-path to both ASNs for incoming traffic to both ASNs.I was thinking of doi...
Hi all. In our company we are considering the possibility of merging of 2 AS's we have control of. As we want to keep both AS numbers and PI independent ranges we are considering to represent one of the AS's to be virtually behind the other ie. the B...
Hi all. I have discovered a strange situation on my 6500 switch that I cannot quite explain except that it is some sort of a bug. The problem is that I have configured that only ssh connections should be allowed for the vty lines but I have quite acc...
Hi. I'm creating a VPN site-to-site tunnel between two locations(one under my control, other side is controlled by a bussines partner). On my side I have an ASA 5510 Version 8.2(3).I have entered the configuration thrugh CLI and when I wanted to test...
Hi. Sorry for the late reply but I was swamped with work and answering to this slipped from my mind.We have determined that the problem wasn't with the firewalls themselves. In fact it was a SYN flood form of DDoS that shot the CPU and memory through...
We are using ASA version 8.2(5).The configuration of the failover is:failoverfailover lan unit primaryfailover lan interface fail_int GigabitEthernet0/3failover interface ip fail_int x.x.x.x 255.255.255.252 standby x.x.x.xfailover group 1 preemptfai...
Hi John,thanks for the reply. I'll apply the configuration tomorrow and we'll see how will it go. The prefix list match the respective IP ranges of our ASN's and the route map is applied to all out going traffic coming from us. Igor
