ASA 8.4(2) under OSX 10.8
One of my most popular blogs on Cisco Inferno is the ability to install and run an ASA firewall by Cisco on GNS3. Since then I have shifted to a Macbook Pro and want to run everything in OSX. I…
One of my most popular blogs on Cisco Inferno is the ability to install and run an ASA firewall by Cisco on GNS3. Since then I have shifted to a Macbook Pro and want to run everything in OSX. I…
NAT on ASA 8.3 and higher It is important to know that the change from 8.2 to 8.3 was massive. It did divide ASA users to a point some felt cheated or disheartened by Cisco’s actions. I admittedly picked it…
–Network Address Translation, ASA 8.2 NAT is required for a number of scenarios and can be used in the most unusual places. Most common is translation of a private RFC 1918 address into a globally routed public IP address. An…
–Routing on ASA– The ASA supports static and dynamic routing protocols. As of ASA code release 8.3+ most routing protocols are supported. OSPF, EIGRP, RIPv2, and static routing are the protocols the ASA can use. Static Routes Static routes are…
–Transparent and Routed Firewalls– There are two modes in which you can have your firewall; routed or transparent mode. Each mode will treat the packets differently and operate in its own way. Depending on your requirements of your design you…
NAT enhancements There are a few little tricks to improve NAT performance. The first would be translation timeout. Translation timeout returns a translated address back to the pool. The default is 3:00 hours. If you have a smaller pool or…
I hope you enjoy this extract from my upcoming ebook – Deploying Cisco ASA firewalls. –DNS on ASA– This section looks at the provision of DNS functions on the ASA. Whilst it cannot provide DNS AAA records it does provide…
In a simple deployment I needed to add a DHCP server to the ASA. No worries there. Quick little configuration like this does the job. dhcpd address 192.168.36.10-192.168.36.50 dmz36 dhcpd lease 3600 interface dmz36 dhcpd dns 192.168.36.1 dhcpd domain ciscoinferno.net…
This morning a post came in via the IPExpert Mailing list. Someone was asking how to put in a ? mark into the password as required by the task. I read this and thought it was rather odd! By default…
The importance of time should not be under estimated. NTP allows synchronisation of clock information across your network. I am labbing my ASA inside GNS3 and want to set up a router to be the Timekeeper! The idea of this firewall…
Alright! Bam! Excited? I surely am. Cisco ASA on my laptop and I can lab anywhere! Now lets establish more than console access via GNS3 and get SSH/HTTPS/ASDM running. The reason I am so pushy to get ASA on a…
GNS3 has been a stable to my personal study. When I first achieved ROUTE on my way to CCNP I worked in a heavily switched environment. I had worked on routers and routing technologies about 5 percent of the time.…