If you're connecting to a Cisco PIX or ASA, you don't actually need to open any ports on the device itself. There is no way to block packets destined to a Cisco PIX or ASA, access lists only block traffic through said device.
I personally do not like the 500s because I rely on command line operation all the time. In my work environment I rarely have access to a gui and do all my work through ssh or other command line options. If you don't have a problem getting less funct...
Looks like a decent config to me... I'm not really sure what you're asking, as it's a bit vague. I mean, the config is a good general config, yet I'm not sure what the box should be doing either. If you want to give some more details, I may be able t...
Yes, the asa only supports dot1q trunking... Make sure you have a dot1q trunk running between the asa and the 2950. At that point, you can enter subinterface config mode on the asa (conf term->int eth0/1.19, for example), make sure you bind a vlan to...
