Solved

asa5510 security

Posted on 2013-02-04
4
282 Views
Last Modified: 2013-02-05
Hi Experts,

we have running a ASA 5510 in our office.
On one leg we use the LAN and on the other leg we have setup a WIFI network.
Inside the ASA we use a CSC module.
But the WIFI leg is also secured by the CSC module.
Is there a way to have the WIFI leg completely unsecured and not scanned for WIFI visitors ?
0
Comment
Question by:Eprs_Admin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 37

Expert Comment

by:ArneLovius
ID: 38854460
If this ASA just to firewall between the LAN and WiFi ?

If it is, then you could just remove the CSC...
0
 

Author Comment

by:Eprs_Admin
ID: 38854487
no, behind the ASA we have a data network and a wifi network.
But the wifi network shouldn't be scanned by csc
0
 
LVL 37

Accepted Solution

by:
ArneLovius earned 500 total points
ID: 38854538
aha, so the ASA is also connected to an external network...

If you follow the documentation, you will see that there will be an ACL to define traffic that gets set to the CSC, simply add deny rules for the traffic that you want to bypass the CSC.

It would be useful if you posted a suitably sanitized copy of the ASA config
0
 

Author Closing Comment

by:Eprs_Admin
ID: 38854593
with the simple ACL and deny I could exclude the whole sub net from scanning.
0

Featured Post

Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question