Cisco ASA – SourceFire 5506-X | direct upgrade to latest build

In my previous post in april I figured out how to upgrade the software step by step. In the mean time I found out it's possible to do this in once. You need to setup first some tools before you can start. Have a TFTP and a FTP Server TFTP server needs to contain the … Continue reading Cisco ASA – SourceFire 5506-X | direct upgrade to latest build

Advertisements

Cisco | ASA 5508 with Firewpower

Yesterday I started to configure and try a Cisco ASA 5508-X with firepower. With the Cisco ASA 5506-X with firepower i knew already that it would take some time to update the firepower software. Now with this new device I had some time to see and test. I started yesterday early afternoon the general configuration … Continue reading Cisco | ASA 5508 with Firewpower

Cisco ASA | Juniper site-to-dynamic VPN

Cisco ASA Configuration part When you want to connect to a Juniper Netscreen SG5 device which has a Dynamic IP address. It can be difficult to find what the correct specs are for this type of setup. First you need to go: Configuration > site-to-site VPN > advanced > Tunnel-Groups You have to edit the … Continue reading Cisco ASA | Juniper site-to-dynamic VPN

Cisco | ASA disable SSL 3.0 settings and change it to TLS V1.2

To see if you SSL version for AnyConnect is on a safe level. You want to check this first via the following website https://www.ssllabs.com/ssltest/analyze.html You need to enter your domain name which you use to connect with the clients to logon to. For this you need to use at lease ASA software version 9.3(2) or … Continue reading Cisco | ASA disable SSL 3.0 settings and change it to TLS V1.2

Cisco – Office 365| Office 365 IP object range on a Cisco ASA

It can happen that you need to configure an IP object range for office 365. I most cases this is because you have a policy that client users are not able to connect directly to the internet. Because of the company policy. In case of the last option where you probably have blocked all http … Continue reading Cisco – Office 365| Office 365 IP object range on a Cisco ASA

Cisco ASA License gone after memory and flash upgrade how-to-recover

Today I upgraded a Cisco ASA 5505 from 256MB memory to 512MB and 128MB Flash to 256MB Flash. After the upgrade the cisco asa forgot the configuration (not that bad, because I had a configuration backup), however after I uploaded the startup-configuration and than I saw the following output. Well I was thinking what is … Continue reading Cisco ASA License gone after memory and flash upgrade how-to-recover

Cisco ASA: easy connect server with service as static forwarder

Today as I'm currently working wit a Cisco ASA 5510 to create a DMZ. I saw some create options which I didn't use in the past earlier. In the Cisco ASDM 6.4 you normally add the external ip address to a service. Until I saw the option under Firewall > Public Servers. Public servers? Yes … Continue reading Cisco ASA: easy connect server with service as static forwarder