Find out your Cisco ASA version (Operating system and ASDM)
Nov17

Find out your Cisco ASA version (Operating system and ASDM)

Posted By on Nov 17, 2015

KB ID 0000690  Problem With all the command changes that have come in in the past few versions, it seems when I get asked ‘how do you do xyz?” my first question is ‘What is the OS version on your ASA?’ So next time I get a blank look, I can just point them here. Also see: ASA 5505 Determine Your License Version Solution Get your ASA version and ASDM version from the ASDM. 1. Connect to the ASA via ASDM. 2. Home...

Read More
Securing Network Device Access With Cisco ACS (and Active Directory)
Nov17

Securing Network Device Access With Cisco ACS (and Active Directory)

Posted By on Nov 17, 2015

KB ID 0000942 Problem For network identification I have tended to use RADIUS (in a Windows NPS or IAS flavour), in the past. I turned my back on Cisco TACACS+ back in my ‘Studying for CCNA’ days, because back then it was clunky and awful. I have a client that will be installing ACS in the near future, so I thought I would take a look at it again, and was surprised at how much more polished it is. As Cisco plans to roll ACS...

Read More
Cisco VPN Client Install Error 28000
Nov17

Cisco VPN Client Install Error 28000

Posted By on Nov 17, 2015

KB ID 0000945  Problem Seen when attempting to install or remove the Cisco VPN client software. Error 28000: Before installing the Cisco Systems VPN Clients {version}, you must uninstall the previous version of Cisco Systems VPN Client {version}, using the Add/Remove Program Files option in the Control Panel. Then restart your system. Solution 1. Firstly Windows Key +R > appwiz.cpl {Enter} > Locate and remove the VPN Client....

Read More
Cisco IOS – Return an Interface to Default (Remove all Settings)
Nov17

Cisco IOS – Return an Interface to Default (Remove all Settings)

Posted By on Nov 17, 2015

KB ID 0001010 Problem The configuration for a particular interface can get quite long, you could go to interface configuration mode, and prefix all the commands with a ‘no’. But this can be a bit repetitive and time consuming. Solution To remove the configuration for interfaces use the ‘default’ command. for example take a look at the following config for FastEthernet1/0/5. Petes-Switch>enable...

Read More
Cisco IOS and ASA Showing the Config Without the ‘More’ Breaks/Pauses
Nov17

Cisco IOS and ASA Showing the Config Without the ‘More’ Breaks/Pauses

Posted By on Nov 17, 2015

KB ID 0001017 Problem When looking at a router, switch or firewall running config, it will usually display a page at a time, you can page down with the space bar, or line down with the Enter/Return key. Normally that’s fine, but what if you want to capture (take a quick backup,) of the config? If you do that, and page down you get a copy of the config that looks like this; –More–   Yes, you can delete...

Read More
Cisco ISE – Basic 802.1x With WindowsPart Three – Adding Network Devices (Authenticators)
Nov17

Cisco ISE – Basic 802.1x With WindowsPart Three – Adding Network Devices (Authenticators)

Posted By on Nov 17, 2015

KB ID 0001077  Problem Back in Part Two we configured the specific 802.1x policies in Cisco ISE. Remember with 802.1x it is a three tier system there is a supplicant, (a machine that wants to authenticate), the Authenticator, (the device the supplicant connect to, in our case a switch), and finally an Authentication server (Cisco ISE). Below I will add our switch into ISE, as a RADIUS device and create some groups, and locations for...

Read More
Cisco CSC Module – Stop it scanning its own update traffic
Nov17

Cisco CSC Module – Stop it scanning its own update traffic

Posted By on Nov 17, 2015

KB ID 0000156  Problem The CSC module when it’s installed in your firewall and running, by default scans all traffic in and out including all its own updates and web traffic, this can cause quite a performance hit, to stop this happening exempt the CSC modules traffic from being scanned. NOTE: your access-lists and port groups may well have different names, so I’ll list all the commands to chase them though the...

Read More
Cisco CSC Module Error – Activation Warning
Nov17

Cisco CSC Module Error – Activation Warning

Posted By on Nov 17, 2015

KB ID 0000392  Problem You try to connect to your Cisco CSC module, and see the following error. Error: Activation Warning CSC is not activated. Please run setup wizard under Configuration > Trend Micro Content Security > CSC Setup > Wizard Setup to perform setup process. Click OK button to to to Trend Micro Content Security Setup wizard. Naturally if you’ve never setup the CSC you are going to see this, but what if it...

Read More
Cisco ASA5500 Update System and ASDM (From CLI)
Nov17

Cisco ASA5500 Update System and ASDM (From CLI)

Posted By on Nov 17, 2015

Do the same from the ASDM KB ID 0000074 Problem Below is a walkthrough for upgrading the OS image and ASDM using CLI, you will need a TFTP server up and running with the files sat in the TFTP servers upload directory. NOTE for updated ASA and ASDM software you need a valid Cisco CCO Login and support contract. For information on Installing and using a TFTP Server CLICK HERE Warning: Before upgrading/updating the ASA to version 8.3 (or...

Read More
Cisco ASA5500 Update System and ASDM (From ASDM)
Nov17

Cisco ASA5500 Update System and ASDM (From ASDM)

Posted By on Nov 17, 2015

Do the same from command line KB ID 0000073 Problem Below is a walkthrough for upgrading the OS image and ASDM using the ASDM, this method does not require access to a TFTP server. Warning: Before upgrading/updating the ASA to version 8.3 (or Higher) Check to see if you have the correct amount of RAM in the firewall (“show version” command will tell you). This is VERY IMPORTANT if your ASA was shipped before February 2010....

Read More