Archive

Posts Tagged ‘asa’

Peer-to-Peer IPSec VPN using PAT

February 28th, 2014 No comments

There may be an occasion to setup a site-to-site VPN with a customer or partner network but due to the risk of overlapping private RFC1918 address space, to use a single public address and Port Address Translation.  This methos uses a single IP address in a NAT (PAT) object.  This example uses simplified NAT available from  ASA software version 8.3+

crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
ccrypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac Read more…

Categories: CISCO, Security Tags: , ,

Cisco AnyConnect VPN Client – Pre-Deployment MSI Package Creation

October 18th, 2013 No comments

The steps to create the (Windows) .msi are as follows:

STEP 1:  Download the ISO file from cisco.com software download navigator page (http://software.cisco.com/download/navigator.html ) Read more…

Categories: CISCO Tags: ,

Cisco ASA – Initial Configuration

March 9th, 2013 No comments

This post describes the tasks required for a basic configuration of the Cisco ASA.  Please note that he smaller Cisco ASA 5505 has an 8-port 10/100 switch which operates at Layer 2 only. So you can not configure the physical ports as Layer 3 routed ports, you need to create VLAN interfaces. By default, interface Ethernet0/0 is assigned to VLAN 2 and it’s the outside (internet-facing or untrusted)interface.  The remaining seven interfaces (Ethernet0/1 to 0/7) are assigned to VLAN 1 Read more…

Categories: CISCO, Security Tags:

Riverbed Steelhead through Cisco ASA

July 20th, 2010 No comments

Introduction

Riverbed Steelhead as WAN accelerator is deployed in WAN environment when traffic between WAN network (i.e. MPLS, Frame Relay) need to be optimized, hence creating so-called “WAN acceleration”. With “standard” WAN network consists of WAN routers and LAN switches, typically the Riverbed Steelhead is in place inline between the WAN routers and LAN switches.  The f9llowing is an illustration: Read more…

Categories: CISCO Tags:

Basic Cisco ASA Configuration

March 30th, 2010 No comments

This is the base setup of a Cisco Adaptive Security Appliance:

Read more…

Categories: CISCO, Security Tags:

Enabling ASDM on PIX and ASA

March 30th, 2010 No comments

ASA_firewall_policy_lgCisco Adaptive Security Device Manager provides setup wizards that help you configure and manage Cisco firewall devices, including:

  • the Cisco ASA Adaptive Security Appliances,
  • Cisco PIX appliances,
  • Cisco Catalyst 6500 Series Firewall Services Modules

All without “cumbersome” command-line scripts

Read more…

Categories: CISCO, Security Tags: