Cisco ASA ‘Ping Source?’
Jun13

Cisco ASA ‘Ping Source?’

Posted By on Jun 13, 2018

KB ID 0001445 Problem To be honest, the title is a little misleading, on an ASA you can specify which interface to launch a ‘ping’ from, but that’s it. I found myself in a situation today where I was working on a client firewall and I was trying to bring up a VPN tunnel, and I did not have access to any of their machines, and nor did they, (hence the reason for the VPN tunnel!) Well we can’t use good old...

Read More
Cisco ASA: Allow VPN Traffic “Through” A Cisco Firewall
May06

Cisco ASA: Allow VPN Traffic “Through” A Cisco Firewall

Posted By on May 6, 2018

KB ID 0001428 Problem I got asked to put in a VPN for a client, this week, it went from a simple site to site, to a site to site with a Fortigate firewall at one end, to a VPN from and ASA to a Fortigate ‘through’ another ASA.  It’s been a few years since I had to tunnel  ‘through’ a firewall, and experience tells me, if you don’t have control of BOTH ends of a new VPN tunnel, anything that stops...

Read More
Cisco ASA: Updating and Copying files from USB
Dec05

Cisco ASA: Updating and Copying files from USB

Posted By on Dec 5, 2017

KB ID 0001377 Problem Cisco ASA firewalls have had USB sockets on them for a while, but a dig into the documentation only yielded, ‘for use in future releases’. Well they are working now! Note: Firewall shown is a 5516-X (running version 9.8(1)) Solution Your drive needs to be formatted as FAT (not NTFS), I’m going to update/install some AnyConnect client software, but there’s nothing to stop you uploading a...

Read More
Cisco FirePOWER is Blocking an Application
Feb27

Cisco FirePOWER is Blocking an Application

Posted By on Feb 27, 2017

KB ID 0001286  Problem A few weeks ago I installed a 5525-X firewall for a client, and set it up as follows; ASA Setup FirePOWER Services (for ASDM) And all was well, then a week later I got an email… One of our teachers is doing a project with MATHS and ICT involving bitcoin. Basically, he has something called BITCOIN CORE WALLET installed and it used to work with the old Firewall. I’ve installed it on my work laptop and taken...

Read More
Cisco – LDAP AAA Error ‘AAA Server has been removed”
Jan11

Cisco – LDAP AAA Error ‘AAA Server has been removed”

Posted By on Jan 11, 2017

KB ID 0001271  Problem Seen while attempting to test AAA authentication via LDAP to a Windows domain Controller. Authentication test to host {IP-Address} failed. Following error occurred –  ERROR: Authentication Server not responding: AAA Server has been removed Solution This is a terribly ambiguous error! What it means is that the ASA cannot bind to active directory, either because; The ASA bind account password is wrong. The...

Read More