Blocking Google Talk (Cisco ASA)
KB ID 0000323 Problem You want to block access to Google Talk, but not disrupt other services like Google Search and Gmail. Solution Yes, you could write a REGEX and block it with an MPF, like I did here, to block Facebook. But Google Talk only runs on 4 servers and uses 4 ports. 1. Connect to the Cisco ASA, and go to configure terminal mode. PetesASA> PetesASA> en Password: ******** PetesASA# configure terminal...
Configure Cisco EasyVPN With Cisco ASA 5500
KB ID 0000337 Problem Site to site VPN’s are great for main office to branch office connections, but for remote workers in a SOHO environment obtaining a static IP address can be expensive and time consuming. Traditionally remote workers will use either AnyConnect or IPSEC Remote VPN’s. However Cisco have a system which lets you have a main site (or sites), with a static IP, that acts as the EasyVPN server, then remote...
SmoothWall site to site (IPSEC) VPN to Cisco ASA
KB ID 0000436 Problem You would like to put in a site to site VPN from a site that has a SmoothWall firewall to another site that has a Cisco ASA. Note: This procedure was carried out on a SmoothWall UTM 1000 Series appliance, and uses a pre-shared key to authenticate the VPN. Solution 1. For The Cisco end of the configuration, you can configure it from command line see here, or from the ASDM see here.. 2. Connect to the...
Cisco ASA – Java RDP Error – Connection Exception Wrong modulus size! Expected64 +8got:264
KB ID 0000452 Problem Seen while attempting to connect to to a Windows machine via the RDP plug in on a Cisco ASA firewall. Error: properJavaRDP error Connection Exception Wrong modulus size! Expected64 +8got:264 Solution 1. I’ve seen some posts indicating that this can be caused by the version of Java that’s installed, however in my case that was NOT the problem. 2. Connect to the ASDM of the ASA firewall >...
Cisco ASA 5500 – Adding Licenses
KB ID 0000531 Problem Each model in the Cisco ASA 5500 range comes with a range of licences and features, to add these features you can purchase them from a Cisco reseller. You will then need to apply the licence to the device. Solution 1. Your first step is to purchase the Licence you require from an authorised cisco reseller. 2. When your licence arrives you need to locate the PAK that is on the certificate. 3. You need the Serial...