Go Premium for a chance to win a PS4. Enter to Win

x

Cisco

23K

Solutions

14K

Contributors

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Share tech news, updates, or what's on your mind.

Sign up to Post

Wanted to see if anyone had any knowledge regarding providing 4G LTE as a backup line for an enterprise office.
I was investigating some Cisco / Meraki options, including :

- Cisco 890 series ISR
- Meraki router + Inseego (formerly Feenet Wireless) Skyus DS

Would anyone have any info or experience with one of these as a solution for a temp situation or as a backup solution.
Appreciate in advance.
0
Identify and Prevent Potential Cyber-threats
Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Set-up issues


I will preface this by saying I had a UTM120 for three years with the UTM9 OS and right now thinking boy I miss those days.  I was told that my appliance was nearing end-of-life so to renew licensing I went with the XG115.  I had configured UTM9 on my own and generated help desk cases if issues arose.  This appliance is quite a bit different.  Firmware XG115 (SFOS 17.0.0 GA) so on the latest firmware.

What I am trying to resolve right now is that any type of web surfing is extremely painful.  I have an on-premise Exchange server so port 443 is being forwarded to it but I also have the default network rule of WAN to LAN all ports and all services are open.  I have a similar network rule that WAN to LAN port 443 is open thinking of other workstations that initiate SSL traffic it will find its way back to the device that initiated the traffic.  Let's face it.  Most web sites are https.  I am constantly being warned that the certificate cannot be verified and I have to click to still access the site or create an exception for the site depending on the browser.  I cannot log in using an account to any web site.  Some sites I can't even create the exception in Firefox.  I can't use the StartPage search engine.  Amazon looks like crap.  No pictures and just a bunch of links.

A little bit on the network.  Uverse gateway goes to a Cisco ASA appliance that I consider my perimeter (and why not have another layer of defense !).  The XG is in bridge mode.  For a …
0
When I add a debug to a 4500 switch at new work place, “show log” is failing to display my debug. Which logging command gets that going?
0
I'm using Cisco VPN client to connect my laptop to my office domain, and to then use RDP. This was working fine, up until Monday. Not working anymore. The VPN connects, but I can't use RDP or ping any of the computers on the network. (I don't know whether I was able to ping before, because I never tried. This laptop is not part of the office domain, in case that matters.)
0
Hi there,

I have an ASA running the internal network out one interface (let's call it int1 on network 1) and a wless guest out of another (let's call it int2 on network 2). So far so good, each segments connects to its own switch and things are properly routed to the web. I'd like however to have the APs broadcast the internal network and guest ssids (out of the same ap). reading the ap documentation i see the options to create the virtual ap and associate it with another vlan (network 2 in this case) My question is this: I can trunk the ports to the AP for both vlans but do I need to do anything on the ASA int1 as it's configured as network 1 and the guest clients will be going to network 2?

thanks.
0
Is there a way to create reports that would show any policy related changes to a Cisco ASA 55xx firewall? For example, how could I show any rule changes that were made over the last week, month or quarter. Thanks so much!
0
From my understanding "service password-encryption"  command encrypts all the password on the running config.  

How do you encrypt just the line con 0 password  ?
0
Hi all I have a site to site VPN connected via two Cisco routers, the tunnels are up but there is only one-way traffic.

Can you please take a look at my configs to see if there's anything I have missed?

(Show crypto isakmp sa) The tunnel is up (QM_IDLE) after attempting a ping to the other side.

(show crypto ipsec sa)
Traffic from SITE A shows getting encapsulated and decapsulated at the other side but nothing returns.
Traffic from SITE B shows getting encapsulated and then nothing on the other side.

I have a feeling whatever is providing the connectivity to SITE Bs WAN port is blocking my traffic but before I start pointing fingers I would like to be sure.

Thanks in advance.
SITE_A.txt
SITE_B.txt
0
Hi all, please am trying to login to cisco FEX from a switch, but not cleared how to go about it.

I have attached the FEX status on the switch below

If i login to the switch what command do i applied that will let me see all interfaces on the FEX.

Thanks for looking into this for me.
FEX-status.docx
0
Dear All,

I configured ISDN Bri line in cisco router,  and connection was up. But unfortunately today on wards i can't ping to destination IP. please help me to solve this problem.

please check below the isdn configuration details.

taherex1#sh isdn status
Global ISDN Switchtype = basic-net3
ISDN BRI0/0/0 interface
        dsl 0, interface ISDN Switchtype = basic-net3
    Layer 1 Status:
        ACTIVE
    Layer 2 Status:
        TEI = 82, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED
    Layer 3 Status:
        0 Active Layer 3 Call(s)
    Active dsl 0 CCBs = 0
    The Free Channel Mask:  0x80000003
    Total Allocated ISDN CCBs = 0


taherex1#sh ip inter brie
Interface                  IP-Address      OK? Method Status                Protocol
Embedded-Service-Engine0/0 unassigned      YES NVRAM  administratively down down
GigabitEthernet0/0         192.168.1.50    YES NVRAM  up                    up
GigabitEthernet0/1         unassigned      YES NVRAM  administratively down down
BRI0/0/0                   unassigned      YES NVRAM  up                    up
BRI0/0/0:1                 unassigned      YES unset  down                  down
BRI0/0/0:2                 unassigned      YES unset  down                  down
Dialer1                    unassigned      YES IPCP   up                    up
NVI0                       unassigned      YES unset  administratively down down
Virtual-Access1            unassigned      YES unset  down   …
0
Get Certified for a Job in Cybersecurity
Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

We have ten gigabit interfaces. How much tunneled traffic would the device be able to push?
0
VPN tunnel shows an established connection on both ends...at the ASA5500 and the RV082.  However, can not ping from either end and can not transmit data traffic across tunnel.  What am I missing?
0
We are currently looking for a Cisco RV 320 alternative. What are the possible options?

Some side info:

- We provide IT services to networks starting at 5 users no larger than 50 users
- As always the case, not too expensive

So far we have been pretty happy with the Cisco RVx series. We were just wondering if there are better alternatives out there that provide more security for our customers.
0
Does the user name to access Cisco switch configured on line VTY?
0
I have a core switch connecting to 13 edge switches. It switxh will connect to the core directly.

The core has 15 vlans for the switches to access the vlans do I need to make all the ports on the core members of the same trunk?
0
Hi all,

Please can anyone suggest any free simple text editor that can compare two different cisco config side-by-side


Thanks
0
Hi all,

Is there a command similar to "access-class management-acl in vrf-also" on the Cisco NX-OS platform?

Thanks!
0
I'd like to test connectivity between a host in my DMZ and and a host on my inside network using the packet tracer function. However, although I can specify the source interface, I don't see any way to specify the destination interface.  Running the trace defaults to using the outside interface as the destination.  Can a destination interface be specified?
1
I need some help if possible.  

My school is very much behind the times, so we are in need of upgrading.

Our president wants specifically to have wireless connections (literally no wires needed to connect a laptop to the system), a very simple way to record high-quality video and audio in the classrooms, and the ability to broadcast class sessions online in real time.

Can anyone give me some suggestions on this?
0
Choose an Exciting Career in Cybersecurity
Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

I have multiple Cisco 504g phones, that don't seem to take the attendant console changes. I have set up the first 3 extensions as a direct speed dial to other extensions on the network (the extension is set as disabled), and all 3 speed dials with flash orange, even though they are subscribed and working. I know to add c=g in the serv subscribing section of attendant console, but these phones seem to not take any changes I make. Hopefully somebody has an answer for this, as these are for a high end hotel, and I cannot have these lights constantly flashing.
0
We are testing Cisco AnyConnect on one of our Cisco ASA 5545s.  I need to know how to add one of our networks so that VPN users can access their servers on that network while connected at home.  Can someone walk me through how to do this and how to find the existing networks that are reachable?  I can do it through ASDM or command prompt.  Thanks!
0
Hello,

We have an ASA5510 thats currently using 10.x.x.3 as the inside IP. All clients behind it use the .3 address as its Default gateway, works fine. However, we want to standardize the default gateway to match other sites and need to change the IP on the inside interface to lets say .1. We want to COA by ensuring any clients that may still have the default gateway of .3 would work as we migrate everything to .1.

How can I have two IPs assigned (10.x.x.1, 10.x.x.3) to the same interface on the ASA? There does not seem to be an alias command.

Thx
0
Hi Everyone, I have a question regarding call forwarding from a Cisco 6000 UC to a typical analogue fax line on a MFP. I understand that typical call forwarding can be done from a callmanager to any external telephone number. Is the same possible for fax lines as well?  I have fax line numbers that now ring at a Cisco VOIP phone which I need forwarded to a MFP, so people can receive faxes on it, this would need to work both ways (incoming and outgoing)

Thank you for your help in advance.

Mayson
0
I'm trying to setup a VPN tunnel between our production VPN Concentrator, a Cisco ASA 5512-x and a newly purchased Linksys LRT224.  I've been able to get the tunnel up after trying quite a few settings, and I see it up however no traffic will pass over it.  I've configured the correct static routes on our internet network (where the ASA resides) and tried a few on the LRT224, however I get no success.  Has anyone setup any tunnels between these or similar devices?  I know the issue resides on the Linksys side, as I have setup several successful tunnels with vendors on the ASA side.  Any information would be appreciated.
0
Hi,

I have been tasked with configuring some switches, the network has multiple VLANs configured. On the core switches I've been asked to allow all Ports to access all VLANs. Is that possible?
0

Cisco

23K

Solutions

14K

Contributors

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).