There may be an occasion to setup a site-to-site VPN with a customer or partner network but due to the risk of overlapping private RFC1918 address space, to use a single public address and Port Address Translation. This methos uses a single IP address in a NAT (PAT) object. This example uses simplified NAT available from ASA software version 8.3+
crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
ccrypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac Read more…
The steps to create the (Windows) .msi are as follows:
STEP 1: Download the ISO file from cisco.com software download navigator page (http://software.cisco.com/download/navigator.html ) Read more…
This post describes the tasks required for a basic configuration of the Cisco ASA. Please note that he smaller Cisco ASA 5505 has an 8-port 10/100 switch which operates at Layer 2 only. So you can not configure the physical ports as Layer 3 routed ports, you need to create VLAN interfaces. By default, interface Ethernet0/0 is assigned to VLAN 2 and it’s the outside (internet-facing or untrusted)interface. The remaining seven interfaces (Ethernet0/1 to 0/7) are assigned to VLAN 1 Read more…
Introduction
Riverbed Steelhead as WAN accelerator is deployed in WAN environment when traffic between WAN network (i.e. MPLS, Frame Relay) need to be optimized, hence creating so-called “WAN acceleration”. With “standard” WAN network consists of WAN routers and LAN switches, typically the Riverbed Steelhead is in place inline between the WAN routers and LAN switches. The f9llowing is an illustration: Read more…
This is the base setup of a Cisco Adaptive Security Appliance:
Read more…
Cisco Adaptive Security Device Manager provides setup wizards that help you configure and manage Cisco firewall devices, including:
- the Cisco ASA Adaptive Security Appliances,
- Cisco PIX appliances,
- Cisco Catalyst 6500 Series Firewall Services Modules
All without “cumbersome” command-line scripts
Read more…