Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
ASA running 8.3(2)Want to be able to hit an internal IP addy from the outside. ONly need access to port 5001.Generally, I would do something like this (assume internal is 10.0.0.1, external is 74.75.76.77 and port is 5001)access-list inbound permit ...
So here's the network: Lots of local users, 192.168.12.x. Users are given an IP thru DHCP from a Windoze server and their default GW is 192.168.12.254. The 254 addy is a Cisco 3560G switch. In the configs of the 3560, we have a line that says i...
I have this 2801 in a critical environment. We had a brief power blip, and even though the router is on UPS, something happened. Anyway, after working with TAC, they determined the flash card had gone corrupt. Lucky for me I had a spare 2801 in my...
This is so strange, I can't figure it out, maybe somene out there can help.Clients are largely Windows XP SP3, but with some Linux and Macintosh thrown in.Switches are 3560s POE, with one 3560G. Firewall is a PIX515-E. We have some static IP addres...
Is there a quick way to block access to one Vlan?I have 6 buildings interconnected by fiber. I am about to add a new building. For the new building, they should be allowed access to all buildings except building 5 (VLAN 5).Which switch do I put the ...
Jose, that looks awesome. Is there any command I can issue inside the ASA that would show me if this connection is in fact being "hit"? I am wondering if I don't have something else in between me and the ASA. I say this because, from the top of "sh...
When I set a client up to use the Sonicwall for the firewall, I cannot use the 3560G as def gw, as it won't work. Even if I change the lineip route 0.0.0.0 0.0.0.0 192.168.12.253 (ASA)toip route 0.0.0.0 0.0.0.0 192.168.12.252 (Sonicwall) it won't...
Thanks Jon. I am not sure why the setup is this way, but you are right. All clients point to the 3560G as their def gw, and anything the 3560G can't resolve, he hands off to the Firewall. A traceroute from a PC using the SW as firewall and def gw ...
Federico, thanks so much for sticking with me on this one! So now I have the capture ins and outs. I have opened them with wireshark, but they don't mean a whole lot to me! Can I mail you the captures or something?Thanks.
The http 0 0 inside went fine.Generating RSA keys was a little more difficult,name NAME doesn't work for me.domain-name DOMAIN workedcrypto key generate rsa didn't work, so I usedca generate rsa key 512and got this:% You already have RSA keys defined...
