Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello, we have an ASA 5545X as our internet edge firewall. On this we are doing wccp redirect for http traffic that goes to our inside interface where we have an Ironport S380. Normal internet traffic that comes into the inside interface egressing t...
Hello, we are using an older version of Cisco ACS version 4.2. I am looking to see if we can enable certain groups to do only certain commands. We are using the web interface for this. All show commands are ok but we would also like to have them ...
ASA 5520 8.2 codeInside Interface; 10.60.53.1/24DMZ Interface: 172.16.125.1/24Public Mail Server: 1.1.1.1I have traffic coming from a 10.60.48.0 network across the WAN that hits the firewall inside interface and would normally go out to the intern...
Hello, I have two ASA's doing a site to site tunnel, one with 8.2 code and one with 8.4. I don't have the config handy but I believe I know where the issue is. On the ASA with 8.2 code we have 3 networks inside. I believe that is ok. On the 8.4 AS...
Hello, I am in the process of moving remote access VPN's from one data center to another. The public IP address is different in the other data center. I am moving from one Cisco ASA to another Cisco ASA so devices are the same. The types of RA VPN...
Yea, I see what your saying. I'm actually wondering if I can terminate the back up tunnels on a different firewall and route the traffic inside over to this one being that it would come to the inside now that way. Not sure that is the best way but ...
Ok that makes sense. I actually already have a static NAT for the mail server in the DMZ to NAT to a public address. That is how normal mobile users get mail from anywhere on the internet. Below is the rule for that:static (DMZ,Outside) 1.1.1.1 172....
That is correct. The 10.60.48.0/24 branch network has no internet connection and must route back to corporate to use the internet. Sorry I am using fake IP's cause I am not allowed to post config but I believe knowing if this example will work will...
Nothing with VPN. It is one of the remote branches in our WAN using a test wireless connection. There is routing for it so everything else is working fine as it comes into our corporate office router and the corporate office router has a default ro...
