Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [cisco-asa]

The Cisco ASA (Adaptive Security Appliance) series of products provide Firewall and VPN functionality.

The Cisco ASA (Adaptive Security Appliance) series of products provide Firewall and VPN functionality as standard. This is Cisco's replacement line for the PIX range, but has additional functionality, mostly related to security, through additional modules.

772 questions
0
votes
3 answers

Could my GPRS connection be too slow for IPSec connection?

I'm setting up an IPSec connection from an Westermo MRD310 to our company Cisco ASA5510. We've had many successful setups using this method, creating a tunnel network between a remote location and our internal network. This time I'm trying to do…
Niclas Lindqvist
  • 189
  • 1
  • 10
0
votes
2 answers

Autonegotiate errors between HP and Cisco hardware?

This is a bit of a specific extension to this question. I've got two ASA's that feed into a Procurve switch, and then into an IPS. All is well except that the procurve absolutely refuses to autonegotiate with the ASA's...The asa's run 100full, and…
Satanicpuppy
  • 5,946
  • 1
  • 17
  • 18
0
votes
2 answers

Quickbooks and Cisco ASA 5505

I have a Cisco ASA 5505, and everything has seemed to function fine, however I have had problems with Quickbooks 2008 running super slow over the network (Samba) and narrowed it down to the Cisco box. Other Samba transfers seem to be pretty fast,…
None
0
votes
1 answer

Is it possible to do DNS-based ACLs on a Cisco ASA?

Short of using static IP addresses, is it possible to have a Cisco ASA use a DNS name rather than an IP address? For instance, if I want to limit a host in the DMZ to access only one particular web service, but that web service might be globally…
pickles
0
votes
2 answers

Cisco asa 5505 locks up / unresponsive

We have a cisco asa 5505 that's new (in service for about 2 months) running 7.2(4) software. Every day around 10a it locks up for approx 10 minutes. We're monitoring it via snmp with stg, and snmp doesn't respond during that time. There's no output…
Chris
0
votes
2 answers

Cisco ASA: provide admin access without providing the enable password

On a Cisco ASA is there any way to provide a user with access to admin features (view/change the config) without providing the main enable password?
DrStalker
  • 6,946
  • 24
  • 79
  • 107
0
votes
2 answers

Cisco ASA: Routing packets based on where the connections started from

We have a Cisco ASA 5505 (version 8.2(2)) with three interfaces: outside: IP address 11.11.11.11, this is the default route inside: IP address 10.1.1.1, this is the local subnet newlink: 22.22.22.22, this is a new internet connection. We need to…
DrStalker
  • 6,946
  • 24
  • 79
  • 107
0
votes
1 answer

site to site(IpSec) between AWS and Cisco is not working

I am trying to set up a site-to-site VPN connection between AWS and Cisco ASA, but the tunnel status is shown as "Down," and under the details section, the message is "IPSEC IS DOWN." Please find below the tunnel logs: AWS tunnel is the IKE_SA…
Ajit Trivedi
  • 1
0
votes
1 answer

ansible backups for cisco asa devices: ERROR: % Invalid input detected at '^' marker

I have been tasked with backing up all of our network devices, so natuarally I chose ansible. I am no expert but I sure need help on this one! I have tried everything under the moon and cannot figure it out, neither has chat-gpt. The ansible ping…
dirman
  • 3
  • 2
0
votes
0 answers

remote network unreachable to Anyconnect clients

I have a Cisco 5516 ASA that serves as the VPN Gateway for Anyconnect clients. If I connect to the Anyconnect VPN the ASA will assign me an address in the 172.25.1.0/24 subnet and that allows me to communicate on our trusted internal…
Mojoman317717
  • 11
  • 2
0
votes
0 answers

TCP Session drops because of FIN signal

I have two servers communicating with each other through ISO 8385 messages over TCP sessions. Basically host-to-host interface between two payment switches. The problem is that the session keeps dropping and when we investigated the reason (TCP…
Mohammed Tellesy
  • 1
0
votes
0 answers

Static DHCP reservation via ASDM

We have a Win 2016 server in a datacenter behind a Cisco ASA 5515 running 9.8(4)29. I use ASDM 7.12(2) to manage it. I am very familiar with networking, but rather a novice with Cisco command line configuration. We have always used we interfaces to…
Jerry Welliver
  • 131
  • 2
0
votes
1 answer

Port forwarding on ASA 5510 internal - internal

I have an ASA connected to the primary network and I'd like it to do an easy port forward so that when a pc tries to telnet the ASA on port 500, for example, the ASA forward the request to a server. The topology would be like: 192.168.1.100 (PC) ->…
Gabe Intothe
  • 1
0
votes
1 answer

Cisco ASA: will 7.2 -> 8.2 upgrade break ipsec-ra functionality?

We have a Cisco ASA 5505 running version 7.2. The current config includes both a site-to-site VPN (ipsec-l2l) and a remote access VPN where users connect using the Cisco VPN client 5.0.06 (ipsec-ra). Because the cisco VPN client lacks support for…
DrStalker
  • 6,946
  • 24
  • 79
  • 107
0
votes
0 answers

Can Cisco ASA PBR route to specific IP/port?

I am working on setting up PBR on our ASA-5505, and was trying to figure out if this scenario is possible. Traffic coming in via one public externa IP on port 443. ASA identify traffic via ACL and uses PBR to route traffic using next-hop…
Qben
  • 248
  • 4
  • 9
1 2 3
51 52