Search results for query: *

I'm not sure if this is possible since my NAT skillz don't encompass this complexity. Is it possible, on an ASA 5525x, to redirect an internal subnet's HTTP traffic from PublicSite1 to PublicSite2 using a NAT? I believe I can do it for everyone by reversing a NAT in the ASDM wizard but I have...

I'm working on ASA 5525x's. Shon Network Administrator

I've been configuring SSL AnyConnect on ASAs for some time now but recently running into a frustrating issue due to specific network configs. When setting up a DHCP Pool for AnyConnect, I've always used a DHCP pool on the same subnet as the ASA's INSIDE interface. AnyConnect works like a...

O' Great Tek-Tips, I believe I have a simple question for you but hard one for me. I have three VLANs. VLAN60 is completely isolated from all other vlans. Certain machines on VLAN30 have access to certain machines on VLAN60 with RDP. They work fine. However, I need to have Machine1 on VLAN60...

Found the fix somewhere else: OK I figured out that the way I was creating the links within the web page were not the same as how links are created within Webvpn. In webvpn, links are created with javascripts that run a Cisco SSL relay program on the browser. Static href<http:// ,etc. Do not...

I am having a major issue with the webvpn configuration on my firewall. I have the following setup. 1. Webvpn with homepage set to a webpage with several links 2. One link being our JD edwards enterprise One system 3. Cisco Secure Desktop (not enabled at the time) 4. Cisco ASA software 8.0(3)...

Strange that I found this post. We just resolved this issue today on one of our XP boxes. You are correct, XP SP3 disables the ActiveX you need to run even after it's installed and enabled. You will need to delete 2 registry entries to make this work...

What would be the correct ACL to write to allow the outside interface to connect to the inside interface? Shon Network Administrator

Like this? access-list outside_access_in permit ip 10.1.15.96 255.255.255.252 10.1.15.96 255.255.255.248 access-group outside_access_in in interface inside Shon Network Administrator

I have a unique setup at a couple of our locations and a strange issue to go with it. Computer => ASA 5505 => SLE VPN Router => Satellite ---> Internet Since I'm using an ASA 5505 more as a router than a VPN client, I'm having difficulty getting the remote network to see the machine behind the...

Yup, that did it! Thanks! Shon Network Administrator

After finding out that PPTP does not work on ASAs, I'm forced to use L2TP over IPSec. I'm configuring an ASA in a lab and have a machine connected to the outside interface. I copied Cisco's L2TP setup config from their site, but it does not work. I've done some research and found others find...

I have an ASA5505 that is configured to disallow anyone access to the EZVPN via User Authentication unless they are in my 'mac-exempt' list. However, even while a machine is blocked, it still has access to request DNS from the server on VPN. PIX 501s are setup similar but they do not allow DNS...

I agree with Supergrrover. We recently went from 501s to ASA5505. We were so impressed with what the ASA5505 can do that we are going to replace the 501s in the field with them. It's a far superior product and it's the same price as 501s, which, as you know, are EOL. Shon Network Administrator

What type of VPN are you using? Are you doing point to point with ISAKMP key, Dynamic Point to point or EZVPN? I had similar issues with 501s connecting to a 515. I found that the problem was the Dynamic Point-2-point was not establishing the VPN's to the correct remote IP address. Not sure...

We are questioning their ability to do what we want them to do for obvious reasons, as you see here. Shon Network Administrator

Found that the Auditing company was scanning using the hostname, which is dynamic depending on the ISP. They are now scanning with the IP address we gave them and it works fine. Shon Network Administrator

Greetings, My company has paid for a third party Auditing company to audit the security of our remote locations, that mostly use PIX 501s. However, we are failing the audits do to that fact that they cannot scan the outside interface of the PIXs. I thought that was a good thing but...

Hey all! I've been tasked with finding a script that updates user's contact information in the GAL on an Exchange 2k3 environment. Since this task is being delegated, I'm looking for an HTA that will only show the attributes that the account contact manager an change. Below is a script does...

Unfortunately, XCACLS only changes permissions and ACLs on NTFS Files and folders. I need something that can change permissions on all user accounts. To be more specific, I need the exact opposite of what the SetSendAsPermission.exe program does. Shon Network Administrator