Nick Bettison LINICKX.com

Multi-Context HTTPS backups of Cisco ASA Script

If you look in the Cisco forums for scripts to backup ASAs you'll find various SSH / Expect , complicated examples... not sure why since in 2006 I showed it can be done with a single wget command ;-)

Recently I needed something that would support Multi-Context firewalls, so I pimped my ...
Cisco ASA SYSLOG config for Tufin SecureTrack
I'm sure there's a very good reason that the Tufin Secure Track User Guide (R14-1) has 8 pages of screenshots instead of including these 10 lines of config; I just don't yet know what the reason is :)
```
logging enable
logging timestamp
logging facility 23
logging message 111008 ...
```
Cisco ASA Firewalls and IP Ranges in ACLS

I've google'd and I cannot find a way of creating a firewall range style object in an ASA, you know the kind of thing whereby you want to allow IP addresses 192.168.1.10 thru 192.168.1.20 in an ACL.

In my frustration I have ...
Cisco ASA - First steps to a Check Point Style Policy

I've just spotted this in the Cisco ASA 8.3 release notes...

You can now configure access rules that are applied globally, as well as access rules that are applied to an interface. If the configuration specifies both a global access policy and interface-specific access policies, the interface-specific policies ...
Irritating ASDM & Java issues...

Follow up from this tweet. Every time I tried to connect to the ASA's ASDM Java would crash with a Null Pointer exception, I tried everything from deleting the .asdm folder in my home directory (my documents on windows), uninstalling the asdm launcher didn't help, neither did clearing ...
Strange ASA ARP Replying Behavior
I've been implementing a few Cisco ASA's recently, and I blogged about this strange behavior; well I came across another one yesterday.

Take a look at this debug arp....
```
CiscoASA# debug arp
debug arp  enabled at level 1
CiscoASA# 
CiscoASA# arp-set: added arp outside 192.168.1.122 ...
```
Cisco ASA and 7905 IP Phone Weirdness

I came accross something odd the other day, I had some Cisco IP Phones on a DMZ interface and the Call Manager was behind the inside interface. If you made a call from a 7940 to a 7940 everything worked fine, if you made a call from a 7905 to ...
Backup Interface on Cisco ASA Firewall

I tweeted a little while ago about Nokia recently supporting interface failover within IPSO, well it looks like Cisco's ASA Version 8 software can do it now too!

The following example creates two redundant interfaces:

asa(config)# interface redundant 1 asa(config-if)# member-interface gigabitethernet 0/0 asa(config-if)# member-interface ...
OSPF & Cisco ASAs

One of the interesting things about ASA's is the fact that it supports running two OSPF Processes. This was a great decision by cisco, if a business has two different OSPF domains the chances are they are owned by two separate parts of the business, so where would be ...

Page 1 / 1

Tag Archive: asa