Search results for query: *

It seems that a hard power cycle to the ASA 5505 cured the status display problems. Still don't know if the connection count is cumulative or instantaneous, but the displays now make much more sense.

I have 2 firewalls that I manage A 5510 running 7.0(6), adsm v5.0 and a 5505 running 7.2(3), adsm v5.2 The ADSM "Traffic Status" displays on the two firewalls don't seem to be showing the same kind of thing and I'm wondering if there was some kind of change in the 7.2(3)/5.2 combo that I...

Can the management interface be used as the failover interface in a 5510 Security Plus version? I believe in the S+ edition, the management port can be used as a 5th ethernet port. Can't find anything that suggests one way or the other. Thanks in advance.

Since I didn't get any takers to this question... Perhaps the resolution will be useful to somebody else at some point in the future... This turned out to be multiple problems. First, there was another firewall programmed to accept SOME of the same addresses. Hence, the two firewalls were...

I've got a 5510, configured as an outside,dmz,inside firewall. It is configured to allow access by dns, www and ssh. The problem is that when the connections time out, the device won't answer again for some random-long time. Example... I can ssh to a server behind the firewall. Talk to it...

For example, the DMZ can talk w/ the outside (as in a web server), but the inside can't talk to the DMZ? I.e. the security level model is somehow crippled?

Regarding Supergrover's comment about one dmz in the 5505. I've been curious about this in the 5505 base model. Does that mean that a there is one dmz network, which several statics can (w/ additional addresses) can be mapped to? Or, does it mean that there can be 1 internal ip address that...

Ok, I'm confused by the last post somewhat... First, I understand the inside/dmz issue, I intend to correct that, but the machinery that I have is on the inside network. I expect that the config is the same, just on a different segment. - Correct me if I'm wrong on that point. The part...

I've tried the suggestion and still isn't working. The log shows the following error when an outside request is attempted. "Inbound TCP connection denied... flags SYN on interface outside". I'm at a bit of a loss about why. As a side note, you'll see that I'm NATing the inside interface...

I have a block of 8 addresses The mask is 255.255.255.248. I've got the interface configured to use the .1 address from the block. I want to figure out how to configure it respond to the whole block so I can pass it through to the DMZ.

I'm presently using a 5510 in routed mode and I'm using a 5510. I want to have the outside firewall respond to multiple addresses (so I can host two web servers at port 80). Since I'm using a 5510, I don't have the ability to use security contexts. Can I create a subinterface on the front end...