Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have an ASA 5505 with SW 9.2(2)4 on a cable connection with an external modem. Behind the ASA are a number of services including one Asterisk server which maintains a connection to a SIP provider. SIP inspection is disabled in the ASA because it...
Hi,I got an ASA 5505 in my lab and got it working fine with one IP and various NAT and other scenarios (I'm currently refreshing my skills after a longer break on the job).Now, from my ISP I can get up to 5 public IPs. However, those IPs are assigned...
Hi,any advice on real-world performance of an ASA 5505? I have run into crash-and-reboot issues with my 5505 after setting up a pretty big ruleset. The ruleset is created by a script (http://stefan.gofferje.net/it-stuff/cisco-systems/201-block-a-whol...
Hi,my beloved old PIX died a year ago and after running a Linux firewall in the meanwhile, I bought an ASA5505 recently.Now, with my Linux firewall I did 2 things besides the "normal" firewalling:First: I blocked Palestine, China and Korea via automa...
Ok, I didn't notice the address change but this is after the address change and before the clearing the connection:defiant# sh conn addr 217.10.79.9119 in use, 868 most usedUDP outside 217.10.79.9:5060 inside 192.168.10.203:5060, idle 0:00:00, byte...
It seems to be a firmware bug! I just tried clear conn all and after that, the Asterisk did connect to the SIP provider.Clearing all connections on an interface should be automatic after an IP address change as it doesn't really make any sense to kee...
Hi Harvey,thanks for your reply! Yes, your understood the scenario right. Configuring static routes wouldn't work here because the IP is assigned by the ISP through DHCP plus the host which I want to NAT behind outside2 should also be world-reachable...
That was the plan originally but I didn't get to the automatic update yet. I was still in the testing phase for the ruleset. Automatic update would have been the next step.
