Recent Comments
Tag Archives: asa
IKEv2 between ASA firewall and IOS router
In previous blog we saw hot to do a site to site IPSec VPN between two Cisco ASA devices. Using IKEv2 for policies negotiations and tunnel establishment. Now, we will change our scenario a bit so that “Company B” uses … Continue reading →
IKEv2 between ASA devices
We have many IKEv1 VPN tunnels under our belts. Now more and more devices support version two of that protocol known as IKEv2. Cisco ASA is no different. We won’t discuss all changes and benefits that are brought to us … Continue reading →
Cisco ASA port forwarding
In this article we saw how to do a static NAT on both ASA pre-8.3 and post-8.3 code. Now we will see how to do a port forward on ASA post 8.3 code. Let’s face it, it is time to … Continue reading →
Verifying a MD5/SHA1 sums before system upgrade or install on ASA/IOS
In one of my previous blogs I stated that we should *always* verify if a download for some upgrade or installation package is correct. We can verify that by comparing MD5/SHA1 sums from the site we downloaded the software from, … Continue reading →
Upgrade Cisco ASA software
Cisco ASA now days can run three generations of code, depending on the hardware platform and memory installed. These are 7.x, 8.x and 9.x. Not all ASAs can run any version of code. For example, “Cisco ASA 1000V cloud firewall” … Continue reading →
Renewing Cisco ASA identity certificate
Let’s say that we use certificates for authenticating our VPN connections. It does not matter if they are traditional Cisco IPSec or new AnyConnect clients. If we did not set our PKI infrastructure and ASA for auto enroll, what is … Continue reading →
L2TP/IPSec with Windows 8/7 and Cisco ASA 8.x/9.x
Well, Windows 8 is here and we will some day migrate to it. At least we who are using Microsoft OSes. This poses one problem. This problem is not directly attached to W8 itself, but with W8 we begin to … Continue reading →
Posted in ASA, Cisco, Microsoft, Security, VPN
|
Tagged asa, l2tp/ipsec, vpn, windows 8
|
30 Comments
ASA Pre-8.3 and Post-8.3 NAT – Static NAT
In our previous blog, we compared a differences with dynamic NAT/PAT between pre-8.3 and post-8.3 ASA code. Now we will do the same with a static NAT. The diagram is the same: We want to allow all users from the … Continue reading →
ASA Pre-8.3 and Post-8.3 NAT – Dynamic NAT/PAT
I like short blogs. When reading a long one, when I reach the bottom, I forget what was at the beginning. This one will be short. I would like to demonstrate the differences in configuring dynamic NAT for Internet access … Continue reading →
ASA firewall in multiple context mode
In our previous blog, we saw that the ASA can be virtualized into many virtual firewalls or contexts. Now, we will see how. We will use this topology: We will focus on ASA1 physical box and set it up. … Continue reading →
popravak 