Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi there.I wish to deny almost all vlan's access to one vlan.Vlan 100 to 200 can not access Vlan40.However vlan50 is ok to access 40. Vlan40 does not need to have access to the other vlans except 50. So vlan 40->50 / 50->40 ok.Nothing else.Deny every...
How to port forward on ASA 5510?we have tried this configuration, but is is not working. Can you guys tell us what is wrong?ASA Version 7.0(8)!hostname ciscoasadomain-name default.domain.invalidenable password fhi49CaZUyRBMnYZ encryptedpasswd fhi49Ca...
Hello guys.I have asa5510 sec plus.Im new to cisco.WAN IP: 77.68.136.96 - 77.68.136.102Is it possible to send traffic from internal host like: 192.168.10.31 out through another WAN ip than the one bound to interface "outside" ?I tried it with this co...
Hey guys.is it possible to limit bandwith from lan interface to WAN interface ? We have 50 mbit internet connection, but we want to dedicate 5 MBit to LAN and 45 MBit to DMZ.Best regards Mikkel
Hey guys.i have 12 public IP's on my wan interface - ofcourse the interface is configured with a static primary ip. Lets say the wan ip is : 77.88.99.100We have ip range from 100 to 112.Is it possible to create a VPN from a router in the outside worl...
Well that seems ok - however we have access to all the vlans through our firewall, asa5515x - we are sitting on inside interface, and DMZ (192.168.10.1) is connected to the 3750G switch, which routes everything there.So we need, ofcourse still to be...
Thanks for the quick reply. I would hate to a pply the access list on all the vlans above 100 - because each time we create a new vlan we would need to remember to apply that access list. So your first suggestion will do the trick, i think.Vlan 40 i...
"Plus you also need to have the following static statement:static (inside,dmz) 192.168.0.0 192.168.0.0 netmask 255.255.255.0"I assume you mean;Static (inside,dmz) 192.168.0.2 192.168.10.34 netmask 255.255.255.255 ??
That is just amazing!Thank you very much.Now lets say that my spamgateway (192.168.10.34) needs to be able to communicate with 192.168.0.2 (on inside) interface, ive just created this rule:!######################ACCESS TIL NCT FRA PROOFPOINT#########...
Hello once again.I think i know how to send all smtp traffic to one internal ip.static (dmz,outside) tcp interface 25 192.168.10.34 25 netmask 255.255.255.255So i fixed my conf a little, fixed the rules that were failing, and the global rules. Please...
