mahesh18

Member Since: Mar 05, 2005

English
mahesh18 commented on Can Router pass traffic for this network in LAN, Switching and Routing 1 month ago

Switch interface 1/5 will connect to AP as trunk port carrying vlans  say vlan 10  10.220.35.x say...

mahesh18 commented on show ip cef shows routes to inetrnal network in LAN, Switching and Routing 2 months ago

Many thanks Reza and peter. Best Regards Mahesh

mahesh18 commented on show ip cef shows routes to inetrnal network in LAN, Switching and Routing 2 months ago

Hi Reza, Yes we are getting full BGP routes from the ISP. Firewall has default route pointing to...

mahesh18 commented on Advertising prefixt list BGP to secondary ISP in LAN, Switching and Routing 2 months ago

Thanks Reza for steping in. Regards Mahesh

mahesh18 commented on show ip cef shows routes to inetrnal network in LAN, Switching and Routing 2 months ago

Hi Peter, On Cisco ASR1 when I check the config via show run it does not show any default static...

mahesh18 commented on show ip cef shows routes to inetrnal network in LAN, Switching and Routing 2 months ago

Here is MS word of diagram attached. Thanks for correction Reza!

mahesh18 commented on show ip cef shows routes to inetrnal network in LAN, Switching and Routing 2 months ago

Hi Peter, I have attached the diagram. Regards MAhesh

mahesh18 commented on Advertising prefixt list BGP to secondary ISP in LAN, Switching and Routing 2 months ago

Many thanks Rick for answering the question and clearing my all doubts. Best Regards Mahesh

mahesh18 commented on Advertising prefixt list BGP to secondary ISP in LAN, Switching and Routing 2 months ago

Hi Rick, Second ISP I can use For  prefix list coming FROM  second ISP I can use same list as ISP1...

mahesh18 commented on Advertising prefixt list BGP to secondary ISP in LAN, Switching and Routing 2 months ago

Hi Rick, Thanks for explaining in so detail. Yes I want both Prefix list  TO and FROM the ISP....

mahesh18 commented on Advertising prefixt list BGP to secondary ISP in LAN, Switching and Routing 2 months ago

Hi Rick, I check the prefix list for existing ISP they are quite similar. I agree someone knowing...

mahesh18 commented on show log does not show traffic in Firewalling 2 months ago

Many thanks Simrid

mahesh18 commented on Cannot ping server from firewall in Firewalling 2 months ago

there was an access list on inside interface for ping traffic  and when I added server subnet to it...

mahesh18 commented on Nat reverse path failure in Firewalling 3 months ago

I need to make two ACL from DMZ  to fix the issue Regards MAhesh

mahesh18 commented on show log does not show traffic in Firewalling 3 months ago

Here is output      show run logginglogging enablelogging timestamplogging console criticallogging...

mahesh18 commented on show log does not show traffic in Firewalling 3 months ago

show logs shows this only  second, max configured rate is 5; Cumulative total count is 779Jun 30...

mahesh18 commented on show log does not show traffic in Firewalling 3 months ago

will try that next week regards Mahesh

mahesh18 commented on Nat reverse path failure in Firewalling 3 months ago

try that still no luck. when I try the policy nat it shows that address is used in static nat? Is...

mahesh18 commented on Nat reverse path failure in Firewalling 3 months ago

Hi, From inside to DMZ all is ok. Can I use this ACL for traffic flow from DMZ to inside ...

mahesh18 commented on Nat reverse path failure in Firewalling 3 months ago

so if I use this ACL and NAT then it should not cause any outage if traffic is flowing between host...

mahesh18 commented on Nat reverse path failure in Firewalling 3 months ago

Thanks for very great and detailed explanation. I already have ACL from DMZ to inside that allows...

mahesh18 commented on Purpose of Intermediate 1,2 root and server certificate in VPN 3 months ago

Many thanks Aditya. Regards MAhesh

mahesh18 commented on Purpose of Intermediate 1,2 root and server certificate in VPN 3 months ago

Hi Aditya, If you can explain me purpose of each cert that will be much appreciated? Regards...

mahesh18 commented on PIM Group address in LAN, Switching and Routing 3 months ago

Many thanks Paul!

mahesh18 commented on ACL for syslog traffic going via ASA in Firewalling 4 months ago

Many thanks Karsten.

mahesh18 commented on syslog server on outside interface in Firewalling 4 months ago

Many Thank Mike!

mahesh18 commented on ASA and multicast connection in Firewalling 5 months ago

correction it is 224.0.0.22.

mahesh18 commented on ssl vpn and acl to restrict access to inside network in Firewalling 5 months ago

Many thanks Dinesh.

mahesh18 commented on Verify NAT translations on 2811 in LAN, Switching and Routing 5 months ago

Hi Reza, I checked there is no ACL 101 so does this mean no NAT is configured and it is not...

mahesh18 commented on ASA with ssl vpn with no acl in outside interface in Firewalling 5 months ago

Many thanks Aditya. Regards Mahesh

mahesh18 commented on %ASA-7-710005: UDP request discarded port 137 in Firewalling 5 months ago

thanks a lot will look into this. Regards Mahesh

mahesh18 commented on ASA with ssl vpn with no acl in outside interface in Firewalling 5 months ago

here is output  show run all sysoptno sysopt connection timewaitsysopt connection tcpmss...

mahesh18 commented on %ASA-7-710005: UDP request discarded port 137 in Firewalling 5 months ago

as far as i know this ASA passes some video traffic?

mahesh18 commented on %ASA-7-710005: UDP request discarded port 137 in Firewalling 5 months ago

Hi Aditya, How can i stop these messages from coming to firewall? Regards Mahesh

mahesh18 commented on L2L tunnel debug shows IPSec SA proposals found unacceptable! in VPN 5 months ago

Hi Aditya, Thanks for explain me that. I will visit the remote site and check the config of it....

mahesh18 commented on L2L tunnel debug shows IPSec SA proposals found unacceptable! in VPN 5 months ago

How can I check the encryption domain?

mahesh18 commented on L2L tunnel debug shows IPSec SA proposals found unacceptable! in VPN 5 months ago

I have access to local only crypto map Outside_map0 6 set ikev1 transform-set ESP-3DES-SHA ESP-...

mahesh18 commented on L2L tunnel debug shows IPSec SA proposals found unacceptable! in VPN 5 months ago

PFS is not used. How can I check NAT? Regards MAhesh

mahesh18 commented on (acl-drop) Flow is denied by configured rule in Firewalling 6 months ago

yes it is vpn traffic and we have nat 0 acl. nat 0 acl has source as any and destination is 10.61.x...

mahesh18 commented on static NAT config from Destination to source in Firewalling 6 months ago

will try to do as this firewall has lot of NAT config. Regards Mahesh

mahesh18 commented on PIX 515 NAT config from outside to inside in Firewalling 6 months ago

Many thanks ! Regards Mahesh

mahesh18 commented on PIX 515 NAT config from outside to inside in Firewalling 6 months ago

if i use this command static (inside,outside) 174.24.x.x  <174.24.x.x> netmask 255.255.255....

mahesh18 commented on PIX 515 NAT config from outside to inside in Firewalling 6 months ago

what IP should i put under mapped ip?

mahesh18 commented on PIX 515 NAT config from outside to inside in Firewalling 6 months ago

Say if source from outside is 10.40.x.x and inside is 174.24.x.x what config should i put then?...

mahesh18 commented on static NAT config from Destination to source in Firewalling 6 months ago

let me know what you wanna see? i can post it

mahesh18 commented on static NAT config from Destination to source in Firewalling 6 months ago

Here is output Phase: 1Type: ACCESS-LISTSubtype:Result: ALLOWConfig:Implicit RuleAdditional...

mahesh18 commented on static NAT config from Destination to source in Firewalling 6 months ago

But when i run the packet tracer from source as DMZ to inside it  hit 2 NAT rules? one is static...

mahesh18 commented on static NAT config from Destination to source in Firewalling 6 months ago

So to make it work i can also use NAT statement from DMZ to inside right? Instead of using NAT...

mahesh18 commented on static NAT config from Destination to source in Firewalling 6 months ago

Hi Jon, Thanks for reply. So if traffic flow is from low to high security interface then i will...

Bio












mahesh18's Stats

Points72
Discussion started 1044
Answers marked as Correct 3
Endorsed 0
Content Rated 1754