Cisco ASA 5500 – Install and Configure a CSC Module
KB ID 0000731 Problem The Cisco CSC module provides ‘in line’ scanning of POP3, SMTP, HTTP and FTP traffic, to protect against viruses but also for anti spam and anti phish (with the correct licensing). If you are familiar with Trend products, you will like it, (because that’s what it runs), and the interface is much the same as Trend IWSS. It is a hardware device that plugs into the back of the ASA, and comes in...
Cisco ASA to Juniper SRX Site to Site VPN
KB ID 0000710 Problem You want to establish a site to site VPN from a site with a Cisco ASA firewall, to another site running a Juniper SRX firewall. I had to do this this week, and struggled to find any good information to help. In the example below I’m configuring the whole thing from a laptop (172.16.254.206) that’s on the Juniper’s site. Use the diagram below, and substitute your own IP addresses and subnet...
Packet-Tracer Fails Subtype: rpf-check Result: DROP
KB ID 000904 Problem I love packet-tracer, I use it a lot, especially when I’ve been told that the firewall I’ve installed is stopping a particular port. I had set up a simple port forward the other day, and when I went to check it with packet-tracer this happened. Petes-ASA# packet-tracer input outside tcp 123.123.123.123 443 192.168.1.10 443 <——-Output removed——–> Phase: 7 Type: NAT...
HP / 3COM – Setup the V1910-24G Switch
KB ID 0000495 Dtd 20/08/11 Problem I was surprised this week when I went to fit one of these switches, I know HP bought 3Com some time ago but when I popped open the HP box I did not expect to see a 3Com switch. Anyway, heres a very quick run down on initial setup (assign IP and secure the system passwords). Solution 1. On the chassis locate the sticker with the serial number on it, on here it will show you the IP address that its set...
Exchange Error 451 4.4.0 primary target IP address responded with…
KB ID 0000252 Problem You see this error message on your Exchange outbound queues. 451 4.4.0 primary target IP address responded with “421.4.4.2 unable to connect.”attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts. Solution Essentially this is a communication error, you can’t connect to the other end on TCP port 25 (SMTP)....