Need help getting Cisco ASA 5505 running

phrea84
phrea84 used Ask the Experts™
on
Hi

I just got a new Cisco ASA 5505 and need to get it up adn running.  I havent done Cisco in a while and feel more comfortable using the GUi than command line.  From what I remember, I need to use hyperterminal to get the inital config started.

I would like help getting this configured with an IP address of 10.0.76.1  From there I should be able to hit it from a browser and finish.  Please assist with the proper commands needed to accomplish this.

Thank you
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
John MeggersNetwork Architect

Commented:
Hyperterminal
Bits per sec    :  9600
Data bits       :     8
Parity          :  none
Stop bits       :     1
Flow control    :  none

On the ASA, configure your inside interface and no-shut it. You'll need an IP address, nameif inside, security level will default to 100.  Configure http server enable, and you'll need to permit http from an address or subnet.  Best bet is to configure it for the whole 10.0.0.0/8.

If you have questions, see http://www.cisco.com/en/US/docs/security/asa/asa83/asdm63/configuration_guide/config.html.

Network and Security consultant
Commented:
Connect with hyperterminal, putty or any similar application. Issue the "setup"-command which will give you promts that ask you about all nessecary basic configuration details.

The setup-command is issued in config-mode:

fw>
fw>
fw> en
Password:
fw#
fw# conf t
fw(config)# setup
Pre-configure Firewall now through interactive prompts [yes]? yes
Firewall Mode [Routed]:

/Kvistofta
OWASP Proactive Controls

Learn the most important control and control categories that every architect and developer should include in their projects.

Pete LongTechnical Consultant

Commented:
This one might be of some use to as well if you want to build it from CLI http://www.petenetlive.com/KB/Article/0000075.htm

Pete
Hyperterminal
Bits per sec    :  9600
Data bits       :     8
Parity          :  none
Stop bits       :     1
Flow control    :  none

On the ASA, configure your inside interface and make it up. You can do following:

interface GigabitEthernet0/1
  nameif Inside
 security-level 100
 ip address 10.0.76.1 255.255.255.0

I hope you are sitting in the same network of 10.0.76.0/24. In this case you need to add a command:

http 10.0.76.0 255.255.255.0 inside
telnet 10.0.76.0 255.255.255.0 inside

After this you can remotely take gui of this firewall and configure according to your requirement.

Best of luck and have fun.

Author

Commented:
kvistofa:
i am at the part in HT Firewall Mode [Routed]:

what else do i need to do?

Author

Commented:
kinda stuck during setup:
i set internal ip to 10.0.76.1 with sm of 255.255.255.0 but i get this error when i try to write to flash
Use this configuration and write to flash? yes
Interface address is not on same subnet as DHCP pool
Error setting inside IP address and mask
Pre-configure Firewall now through interactive prompts [yes]?
ideas?
The network you are connecting to is not on the same subnet of the inside interface of the firewall....
You will have to say no to interactive prompt.

Author

Commented:
ok im in the wizard now (got to by ip address)  but its been delievering commands for 15 minutes)  i probably messed up.
i apologize for being so difficult--ive always struggled with cisco =\
should i just press the reset button and start over?

Author

Commented:
i think ive screwed up--i can set a static ip on my laptop to 192.168.1.x and ping 192.168.1.1 or set a static ip to  10.0.76.x and  ping 10.0.76.1 but i cant hit either via a browser.
here is what i want to do:
set mu static ip from my isp on int 0/0
set up on int 0/1-/0/7
enable dhcp scope for 10.0.076.100-10.0.76.150
configure DNS
open several ports (not sure if i should use NAT or PAT) ?
update and secure.
I really need to take a cisco classs, but i would appreciate any help in getting these tasks accomplished,
thanks

Author

Commented:
anyone?

Author

Commented:
im NOT trying to close this question--i was trying to award points!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial