Cisco Router – CBAC and Zone Based Firewall Setup
Nov17

Cisco Router – CBAC and Zone Based Firewall Setup

KB ID 0000937  Problem IOS 11.2 gave us CBAC, and IOS 12.4(6)T gave us the Zone Based Firewall. You can still use either, (providing you are running the correct IOS, or in the case of version 15 and upwards, added the correct license, ‘securityK9’). For older IOS versions usually you want the advipservices version of the IOS). Solution Run the following command to see if you have the correct license installed....

Read More
Cisco Firewall (ASA/PIX) – Granting Access to an FTP Server
Nov17

Cisco Firewall (ASA/PIX) – Granting Access to an FTP Server

KB ID 0000772 Problem If you have an FTP server, simply allowing the FTP traffic to it wont work. FTP (in both active and passive mode) uses some random high ports that would normally be blocked on the firewall. So by actively inspecting FTP the firewall will know what ports to open and close. Solution How you ‘allow’ access to the FTP server will depend on weather you have a public IP address spare or not, if you only...

Read More