I just setup a ASA 5505...the last issue I have is I can't access FTP on the outside network.
Please see config attached.
Well you got a few weird thinks on this config
1 your global (outside) 1 has a wrong net mask
2 you have no interface specified for inside but you have a nat (inside)
3 you dont need these access lists vengra_access_in and vengra_access_out
when you do nat it allow any thing from a high secure interface ( your int vengra ) to any interface to lower security interface( outside)
Well I saw a couple more weird options but any ways I'll tell you why you cannot access ftp
you need a police inspection
just type this as I have here.
policy-map type inspect dns preset_dns_map
message-length maximum 512
inspect dns preset_dns_map
inspect h323 h225
inspect h323 ras
service-policy global_policy global
This is the default police inspection for the ASA I don't recommend you remove, you may want to twicke it a little be but I would not take it out
to get more information on ftp go to http://slacksite.com/other/ftp.html
and I also recommend you take a look on types of firewall - packet filter, proxy filter and Stateful Packet Filter
Pixes and ASA's are Stateful Packet Filters