Find out your Cisco ASA version (Operating system and ASDM)
Nov17

Find out your Cisco ASA version (Operating system and ASDM)

Posted By on Nov 17, 2015

KB ID 0000690  Problem With all the command changes that have come in in the past few versions, it seems when I get asked ‘how do you do xyz?” my first question is ‘What is the OS version on your ASA?’ So next time I get a blank look, I can just point them here. Also see: ASA 5505 Determine Your License Version Solution Get your ASA version and ASDM version from the ASDM. 1. Connect to the ASA via ASDM. 2. Home...

Read More
Cisco CSC – Upgrade the Operating System
Nov17

Cisco CSC – Upgrade the Operating System

Posted By on Nov 17, 2015

KB ID 0000807  Problem Upgrading the operating system on the CSC module is pretty straight forward, as long as you have a valid support agreement for your hardware and a CCO account you can download the updates straight from Cisco (here). Solution WARNING: It’s rare that you can update straight to the latest version, by all means try, and the CSC module will simply error if it will not accept the version you are trying to update...

Read More
Cisco ASA 5500 Client VPN Access Via Kerberos (From CLI)
Nov17

Cisco ASA 5500 Client VPN Access Via Kerberos (From CLI)

Posted By on Nov 17, 2015

KB ID 0000049 Problem You would like to enable remote access for your clients using the Cisco VPN Client software. Solution Before you start – you need to ask yourself “Do I already have any IPSEC VPN’s configured on this firewall?” Because if its not already been done, you need to enable ISAKMP on the outside interface. To accertain whether yours is on, or off, issue a “show run crypto isakmp”...

Read More
Cisco ASA5505 Setup (Via ASDM)
Nov17

Cisco ASA5505 Setup (Via ASDM)

Posted By on Nov 17, 2015

KB ID 0000067 Problem Regular visitors to PNL will know I much prefer to do things at command line, but I appreciate most people trying to set up a new firewall will want to use the GUI. Before you start you will need to know what IP addresses you want to use, what password you want to use etc. Solution 1. You get two network cables in the box, connect your PC/Laptop to Ethernet port 1 (See the photo, that’s the second one in...

Read More
Cisco ASA – Only Allow Mail Servers SMTP Outbound
Nov17

Cisco ASA – Only Allow Mail Servers SMTP Outbound

Posted By on Nov 17, 2015

KB ID 0000172  Problem It’s not unusual for nasty Virus’s and Malware once they have infected a machine, to set up outbound communications on the mail protocol SMTP (TCP Port 25), which can lead to your public address being blacklisted. So it’s considered good practice to stop all your clients getting mail access outbound through your firewall, while still allowing your mail server. Note: On Cisco firewall’s,...

Read More