ASA5505 – ‘This Licence Does Not Allow Configuring Of More Than 2 Interfaces’
Nov16

ASA5505 – ‘This Licence Does Not Allow Configuring Of More Than 2 Interfaces’

KB ID 0001367 Problem When attempting to bring up a ‘3rd VLAN’ on an ASA 5505 firewall you see an error like this; Petes-ASA# configure terminal Petes-ASA(config)# int vlan 3 Petes-ASA(config-if)# nameif DMZ ERROR: This license does not allow configuring more than 2 interfaces with nameif and without a "no forward" command on this interface or on 1 interface(s) with nameif already configured. Petes-ASA(config-if)# Or if...

Read More
Cisco ASA 8.2 Upgrade to 8.3
Nov15

Cisco ASA 8.2 Upgrade to 8.3

KB ID 0001366 Problem I can’t believe I’m writing this, it’s been so long since 8.3 was released (7 Years!) And still there’s firewalls out there running old code? Why is the 8.3 upgrade important? This update made some very major changes to the way we did NAT, and also the way we wrote ACL’s. It was a big change. I remember keeping my client firewalls on 8.2 for a while until I fully understood the...

Read More
Meraki Block Page http://wired.meraki.com:8090  ‘Not Found’
Nov13

Meraki Block Page http://wired.meraki.com:8090 ‘Not Found’

KB ID 0001365 Problem If you have a Meraki Security device and have enabled ‘Content Filtering’, instead of a nice ‘block-page’ informing you why you are being blocked you may see this; http://wired.meraki.com:8090 This is happening because your Corporate DNS is resolving ‘wired.meraki.com’ to 54.241.7.184, which you can also see if you look at the URL you are trying to connect to it on port 8090. A...

Read More
Cisco FirePOWER (On-Box / ASDM) Change the Time Zone
Nov08

Cisco FirePOWER (On-Box / ASDM) Change the Time Zone

KB ID 0001363 Problem At first this was just a bug, now it’s annoying, I don’t know why Cisco have not got round to fixing this, it’s still a problem in the latest (6.2.2 at time of writing,) version. Solution Configuration > ASA FirePOWER Configuration > Local > System Policy > Time > Synchronisation > Manually > Save Policy and  Exit. Deploy > Deploy FirePOWER Changes > Deploy. To View...

Read More
Cisco ASA: Prioritise RDP Traffic
Oct31

Cisco ASA: Prioritise RDP Traffic

KB ID 0001359 Problem I have a client who had two sites, one didn’t have a particularly good internet connection, (which is the actual problem that needed to be solved). But in the interim, he wanted me to prioritise RDP traffic, as his staff were constantly complaining about the speed of their connections. Note: They may be a myriad of reasons why user experience is bad for an RDP session, this was quite simply a bandwidth...

Read More
AnyConnect Error – ‘Failed To Get Configuration From Secure Gateway’
Oct19

AnyConnect Error – ‘Failed To Get Configuration From Secure Gateway’

KB ID 0001354 Problem Saw this while attempting to connect to my ASA this week. AnyConnect Secure Mobility Downloader Failed to get configuration from secure gateway. Contact your system administrator Solution Well luckily I’d just made a change so I could focus on the right area straight away. I’d been messing around with the profile xml file associated with my AnyConnect GroupPolicy. If you take a look at my profile...

Read More