About Yura Kazakevich

Yura Kazakevich · 03-26-2019

Hi everyone, Very strange issue with FTP inspection on Cisco ASA5506-X (9.8(2)20). Passive mode works fine, BUT not for all files...For example (look at screenshot), user can download any file (txt) except this one 34313622.210. As you can see...

Yura Kazakevich · 12-01-2018

Hellow everyone! I'm trying to configure Hairpin NAT on my ASA5506X (version 9.8.2.20) in order to allow internal users connect to internal servers through their Public IP address 82.52.222.122 (fake).I used this scenario on my old Cisco PIX515E (ver...

Yura Kazakevich · 09-09-2018

Hello everyone! I have Cisco ASA5506-X (ver. 9.8(2)20, asdm 7.9(1)151) on my remote site. I want to setup VPN access with authentication from Active Directory. I want to use AD passwords for auth in ASDM and SSH (if it fails use LOCAL) also. I alread...

Yura Kazakevich · 09-22-2016

Hello everyone! I have Cisco Router 892 (c890-universalk9-mz.154-3.M4.bin) with Zone-Based Firewall and Policy-based routing. Everything works fine, but now I need to have ability access outside router interface IP adresses from LAN. For example, I h...

Yura Kazakevich · 09-05-2016

Hello everyone! I have IPSec tunnel between Cisco Router 892 (c890-universalk9-mz.154-3.M4.bin) and Cisco PIX 515E (ver. 8.0(4)28) with 5 subnets behind PIX. PIX configured to process bi-directional connection-type, but Router not support it =( So, w...

Yura Kazakevich · 03-10-2020

Recreate interface fixed and all releated objects (IPSecs, NATs, ACLs, Routes and etc.) fixed my glitch. Thank you very much to anyone who tried to help me!

Yura Kazakevich · 03-10-2020

I've just created my own LAB. I have spare ASA5506-x.So, I reseted config, upgraded rommon to 1.1.15, asa to 9.9.2.66 and asdm 792.152. Removed BRI and then created step by step interfaces, NATs and ACLs. See attached config. And I've met the same is...

Yura Kazakevich · 03-09-2020

Hi Cristian,Thank you for your respond. I did so already, but without reload ASA.Now I've tried as you said (with reload):nat (inside,bft) source static obj_111-244 interface destination static bft-network bft-network service tcp80 tcp45423 nat (insi...

Yura Kazakevich · 03-05-2020

@Sheraz.Salim wrote:why you are confusing your self. let me explain you. In your ASA configuration you mentioned this43 (inside) to (bft) source static 192.168.111.244 interface destination static bft-network bft-network service tcp80 tcp45423 t...

Yura Kazakevich · 03-04-2020

I'm trying to make port mapping (for example)Inside host (192.168.111.250):3389 ---> BFT-interface (10.1.11.30):65123 in direction to bft-network (10.0.0.0/8).ASA discards income connections as explained in first message. It seems ASA don't let me ma...

Member Since	‎02-08-2011 11:21 PM
Date Last Visited	‎03-14-2020 07:21 AM
Posts	38
Total Helpful Votes Received	10

User Statistics

User Activity

ASA5506 drops some files in passive FTP

Hairpin NAT ASA5506-X version 9.8

ASA5506-X auth LDAP via IPSec

Cisco Router access outside interface from inside LAN

Cisco Router 892 IPSec Initiator?

Re: Cisco ASA 5506-X PAT to interface problem

Re: Cisco ASA 5506-X PAT to interface problem

Re: Cisco ASA 5506-X PAT to interface problem

Re: Cisco ASA 5506-X PAT to interface problem

Re: Cisco ASA 5506-X PAT to interface problem