Cisco ASA – SourceFire 5506-X | direct upgrade to latest build

In my previous post in april I figured out how to upgrade the software step by step. In the mean time I found out it's possible to do this in once. You need to setup first some tools before you can start. Have a TFTP and a FTP Server TFTP server needs to contain the … Continue reading Cisco ASA – SourceFire 5506-X | direct upgrade to latest build

Advertisements

Cisco | ASA 5508 with Firewpower

Yesterday I started to configure and try a Cisco ASA 5508-X with firepower. With the Cisco ASA 5506-X with firepower i knew already that it would take some time to update the firepower software. Now with this new device I had some time to see and test. I started yesterday early afternoon the general configuration … Continue reading Cisco | ASA 5508 with Firewpower

Cisco ASA | Juniper site-to-dynamic VPN

Cisco ASA Configuration part When you want to connect to a Juniper Netscreen SG5 device which has a Dynamic IP address. It can be difficult to find what the correct specs are for this type of setup. First you need to go: Configuration > site-to-site VPN > advanced > Tunnel-Groups You have to edit the … Continue reading Cisco ASA | Juniper site-to-dynamic VPN

Cisco | ASA disable SSL 3.0 settings and change it to TLS V1.2

To see if you SSL version for AnyConnect is on a safe level. You want to check this first via the following website https://www.ssllabs.com/ssltest/analyze.html You need to enter your domain name which you use to connect with the clients to logon to. For this you need to use at lease ASA software version 9.3(2) or … Continue reading Cisco | ASA disable SSL 3.0 settings and change it to TLS V1.2

Cisco | SourceFire expert mode Cisco ASA 5506-X

Recently I was updating a Cisco ASA 5506-X SourceFire. It was not the update for the ASA or ASDM, but an update for the SourceFire it self. Via the ASDM you can start an update for a local downloaded file or file downloaded from the internet. In my case i downloaded the file to my … Continue reading Cisco | SourceFire expert mode Cisco ASA 5506-X

Cisco – Office 365| Office 365 IP object range on a Cisco ASA

It can happen that you need to configure an IP object range for office 365. I most cases this is because you have a policy that client users are not able to connect directly to the internet. Because of the company policy. In case of the last option where you probably have blocked all http … Continue reading Cisco – Office 365| Office 365 IP object range on a Cisco ASA

Cisco | How to connect 2 Cisco ASA’s 5505 to a Cisco IOS Router 2921

Basic information The Cisco IOS router contains the IOS version c2900-universalk9-mz.SPA.152-4.M4.bin. Both Cisco ASA's 5505 contains the ASA software version 8.0(5) The Scenario will look like this: First I will explain the configuration of the IOS router. Cisco IOS 2921 configuration First the vpn configuration (site to site). This configuration contains also a VPN Client … Continue reading Cisco | How to connect 2 Cisco ASA’s 5505 to a Cisco IOS Router 2921