Jay Johnston

Member Since: Mar 13, 2005

English
Jay Johnston commented on Static DHCP IP to Mac-address reservation in ASA in Firewalling 3 months ago

We absolutely have not forgotten about this feature. Stay tuned.

Jay Johnston commented on TAC Security Podcast - Show Information and Episode Listing in Firewalling 2 years ago

Thanks for letting me know, i'm working on it now...

Jay Johnston commented on ASA 9.1 (3) 2 NAT questions in Firewalling 2 years ago

jeleinweber  has it right. Your outbound connections from that server are hitting rule #1 of your...

Jay Johnston commented on VIDEO: Cisco ASA version 8.3 and 8.4 NAT Configuration Example in Firewalling 3 years ago

For some reason the video isn't showing up.You can view the video at this URL:http://www.youtube....

Jay Johnston commented on cisco asa traffic flow with destination nat in Firewalling 3 years ago

Some of these specifics are outlined in the configuration guide (see http://www.cisco.com/en/US/...

Jay Johnston commented on cisco asa traffic flow with destination nat in Firewalling 3 years ago

The ASA will always apply NAT based on the order of the NAT table (which is directly derived from...

Jay Johnston commented on cisco asa traffic flow with destination nat in Firewalling 3 years ago

Hi all! The topic being discussed here is one that sometimes causes confusion for ASA...

Jay Johnston commented on VIDEO: Cisco ASA version 8.3 and 8.4 NAT Configuration Example in Firewalling 3 years ago

For information relating to how the NAT table is ordered see:ASA Network Address...

Jay Johnston commented on VIDEO: Cisco ASA version 8.3 and 8.4 NAT Configuration Example in Firewalling 3 years ago

Check to see if this is working now, some problems were fixed last night. The video plays for me ok...

Jay Johnston commented on TAC Security Podcast Episode #26 - Troubleshooting IPSec VPNs in VPN 3 years ago

Thanks for the feedback! We're about to release an episode on tips and tricks for parsing through...

Jay Johnston commented on TAC Security Podcast Episode #26 - Troubleshooting IPSec VPNs in VPN 3 years ago

Pretend to be a standard TCP or UDP client; set the port to something in the ephemeral range of...

Jay Johnston commented on 5505 with 9.1 iOS proper NAT and port forward syntax in LAN, Switching and Routing 3 years ago

Also, the TAC wrote a guide on port forwarding through the ASA, and how to troubleshoot it:http://...

Jay Johnston commented on Stub Multicast Router on ASA in Firewalling 3 years ago

The Cisco TAC has written an ASA Multicast troubleshooting guide that might help other engineers...

Jay Johnston commented on problem with Multicast on ASA 7.2(3) in Firewalling 3 years ago

The Cisco TAC has written an ASA Multicast troubleshooting guide that might help other engineers...

Jay Johnston commented on Multicast over PIX firewall in Other Security Subjects 3 years ago

Also note the TAC has written an ASA Multicast troubleshooting guide:http://www.cisco.com/en/US/...

Jay Johnston commented on VIDEO: Cisco ASA version 8.3 and 8.4 NAT Configuration Example in Firewalling 3 years ago

For some reason the video is not loading in Chrome, but does work in Firefox. Can you try Firefox?

Jay Johnston commented on sysopt connection tcpmss and MTU of 9216 in Firewalling 3 years ago

This is now documented online:ASA: Receiving and Transmitting Jumbo Ethernet Frameshttp://www.cisco...

Jay Johnston commented on Support of Jumbo frames on ASA 5500 Firewall Appliance? in Firewalling 3 years ago

Yes, please see this doc:ASA: Receiving and Transmitting Jumbo Ethernet Frameshttp://www.cisco.com/...

Jay Johnston commented on ASA and Jumbo frames in Firewalling 3 years ago

Yes, see this doc:http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080bd7524....

Jay Johnston commented on Port Range Forwarding on post 8.3 ASA in Firewalling 3 years ago

Remco, this is due to a new bug we've found with the 9.0 and 9.1 versions of software.CSCud70110...

Jay Johnston commented on Static DHCP IP to Mac-address reservation in ASA in Firewalling 4 years ago

This functionality is currently not supported on the ASA. There is no known way to implement this...

Jay Johnston commented on TAC Security Podcast Episode #28 - The History of the PIX in Firewalling 4 years ago

Rich,     Thanks for writing in! I just submitted our next episode for posting, hopefully it will...

Jay Johnston commented on TAC Security Podcast Episode #28 - The History of the PIX in Firewalling 4 years ago

Adesh,That was my error, I fixed the link. Thanks!

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

Thanks for your feedback, and I agree that it would be good to have more examples of NAT...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

For this port forwarding example, both Object NAT and Manual NAT work fine. Object NAT is less...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

I think one source of the confusion here is that you are applying the NAT configuration to the...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

AlexStarting in 8.3, a NAT translation can be completed by configuring the translation from the...

Jay Johnston commented on TAC Security Podcast Episode #26 - Troubleshooting IPSec VPNs in VPN 4 years ago

Gernot,     Thanks for letting me know; I've contacted the folks that should be able to fix this,...

Jay Johnston commented on TAC Security Podcast Episode #25 - GETVPN and DMVPN in VPN 4 years ago

In iTunes, go to the Podcast section and click the 'Refresh' button, and that should cause this...

Jay Johnston commented on Quick redundant interface configuration reference on ASA. in Security 4 years ago

Ankur,     Can you please explain why you are writing this document? Honestly it gives no added...

Jay Johnston commented on TAC Security Podcast Episode #23 - The Cisco ASA Services Module in Firewalling 4 years ago

The SXJ2 is now available for download.

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

Eric, I'm really glad everything is working now and that your calls are successful. Hopefully our...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

Eric,Since your nat translation was configured in the inside->outside direction (nat (inside...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

Yep, your configuration looks fine. Your service object SIP_10kTo20k specifies SOURCE and not a...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 4 years ago

Eric,Ok, we're going farther down the rabbit hole here. When we see inbound packets dropped and...

Jay Johnston commented on ASA5520 Memory Upgrade in Firewalling 4 years ago

Cisco's response to this issue is posted in the Release note of CSCtg55418. Please note that this...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 5 years ago

The ASA knows which interface to use because of the order of the "nat (inside,outside)" at the...

Jay Johnston commented on Config Example: Static PAT (NAT) for a range of ports using ASA version 8.3 in Firewalling 5 years ago

Eric, you don't have to have a new object that references the outside ip address of your firewall....

Jay Johnston commented on TAC Security Podcast - Show Information and Episode Listing in Firewalling 5 years ago

Thanks Maykol, we appreciate the feedback! We try to relate to the daily issues we see in each...

Jay Johnston commented on VIDEO: Cisco ASA version 8.3 and 8.4 NAT Configuration Example in Firewalling 5 years ago

All ACLs (applied in any direction on any interface) should refer to the local (or real) ip...

Jay Johnston commented on VIDEO: Cisco ASA version 8.3 and 8.4 NAT Configuration Example in Firewalling 5 years ago

Thanks, I'm very glad the video helped!

Jay Johnston commented on Email when network is down asa5510 in Firewalling 5 years ago

You could configure the ASA to monitor the next-hop IP towards your ISP using route-tracking; it...

Jay Johnston commented on Allow ICMP when using Port Redirection(Forwarding) in Firewalling 5 years ago

Sergio,     No, the port-translations are only available for TCP and UDP protocols. (since those...

Jay Johnston commented on TAC Security Podcast Episode #2 - New Features Introduced with ASA Version 8.2 in Firewalling 5 years ago

Or reboot the upstream equipment; if it is locked in a closet somewhere, briefly cut the power to...

Jay Johnston commented on ASA 5510 xlate problem in Firewalling 5 years ago

Nick,     Don't adjust the timeout settings; the 'show conn count' proves that the ASA isn't...

Jay Johnston commented on PIX cutting off internet in Firewalling 5 years ago

Ja,Are you trying to get SSH access to your PIX working to determine why your internet access gets...

Jay Johnston commented on ASA 5510 xlate problem in Firewalling 5 years ago

Check the output of 'show xlate count' and 'show conn count' to ensure that you aren't hitting the...

Jay Johnston commented on Upgrade asa failover pair from 8.2 to 8.4 w/o zero-downtime in Firewalling 5 years ago

Javier,The zero-downtime upgrade should work fine, as users have commented at the end of this...

Bio












Jay Johnston's Stats

Points552
Discussion started 4
Answers marked as Correct 9
Endorsed 1
Content Rated 33