Cisco ASA 5500 – Adding Licenses
KB ID 0000531 Problem Each model in the Cisco ASA 5500 range comes with a range of licences and features, to add these features you can purchase them from a Cisco reseller. You will then need to apply the licence to the device. Solution 1. Your first step is to purchase the Licence you require from an authorised cisco reseller. 2. When your licence arrives you need to locate the PAK that is on the certificate. 3. You need the Serial...
Cisco ASA Redundant or Backup ISP Links with VPNs
KB ID 0000544 Problem This method provides failover to a redundant ISP link should your primary network connection go down. IT IS NOT going to load balance the traffic across both interfaces. In this example I’ve also got a VPN to a remote site and some port forwarding to contend with as well. Where we are at the start. Where we want to be Solution Before you go any further the ASA that will have the backup ISP line,...
ASA 5505 Determine Your License Version
KB ID 0000701 Problem If you are having problems with internal clients NOT getting through the firewall, the license on your ASA 5505 may be ‘to small’. ASA 5505 License Differences Essentially the licenses come in 10 user, 50 user, and unlimited*. You can also have a Security Plus License, this increases IPSEC VPN’s from 10 to 25, and adds Active/Standby failover, Dual ISP Support, and DMZ Support. *Note: These...
Cisco ASA 5505 Routing Between Two (Internal) VLANS
KB ID 0000869 Problem I had to set this up for a client this week, I’ve setup a DMZ on a 5505 before and I’ve setup other VLANs to do other jobs, e.g. visitor Internet access. But this client needed a secondary VLAN setting up for IP Phones. In addition I needed to route traffic between both the internal VLANs. I did an internet search and tried to find some configs I could reverse engineer, the few I found were old (Pre version 8.3)...