sokakkar

Member Since: Oct 09, 2009

English
sokakkar's Activity on Cisco Support Community
Currently displaying 50 results

sokakkar has commented on ASA 8.4(4) to ASA 9.1.2

1 year 6 months ago
Awesome! :-)

sokakkar has commented on CBAC - FTP and PAT

1 year 6 months ago
Hi,Based on the information which you provided earlier, data connection from...

sokakkar has commented on ASA 5515 IPS management access

1 year 6 months ago
Hi Vladimir,Sounds great! You really figured it out yourself!Please rate the...

sokakkar has commented on HA Configuration Issue

1 year 6 months ago
If you're not openind a TAC case, keep looking at Cisco.com for any new...

sokakkar has commented on HA Configuration Issue

1 year 6 months ago
Awesome! Glad I could help!

sokakkar has commented on HA Configuration Issue

1 year 6 months ago
Hi Eddie,The BIOS Flash size is not used/compared between mates when...

sokakkar has commented on ASA 5515 IPS management access

1 year 6 months ago
Hi Vladimir,Yups, that is one issue which is seen. Java downgrade should fix...

sokakkar has commented on how to completely ignore an IP address

1 year 6 months ago
Hi Will,Like Karsten mentioned, event action filter is the way to ensure no IPS...

sokakkar has commented on ips license renew

1 year 6 months ago
Hi,You can check the license status on IDM/IME on home page. Or using 'show...

sokakkar has commented on ASA 5515 IPS management access

1 year 6 months ago
Hi Vladimir,Here is how packets are going to flow:- From management machine to...

sokakkar has commented on CBAC - FTP and PAT

1 year 6 months ago
Hi Paul,To check if CBAC is dropping it. Enable logs on router:Ip inspect log...

sokakkar has commented on TACACS+ fallback problem ASA 5520

1 year 6 months ago
Hi Arun,Can you take captures on inside interface of ASA when problem occurs?...

sokakkar has commented on The ASA5500 created Crypto Archive File as a Soft Reset was necessary

1 year 6 months ago
Hello,I would suggest opening a TAC case for this.Thanks.- Regards,Sourav Kakkar

sokakkar has commented on HA Configuration Issue

1 year 6 months ago
Hi Eddie,Sounds like you have some SSM module on one of the ASA's. Can you...

sokakkar has commented on asp drop - First TCP packet not SYN (tcp-not-syn)

1 year 6 months ago
Hi,Since it is a RST packet coming from client IP destined to proxy server IP...

sokakkar has commented on High cpu load - burst traffic

1 year 6 months ago
Hi,Is the ASA running high on CPU constantly or do you see CPU spikes?Can you...

sokakkar has commented on ASA 8.4(4) to ASA 9.1.2

1 year 6 months ago
Hi Soeren,The upgrade is fairly staright forward, no changes in NAT or acl or...

sokakkar has commented on how to buy license? for AIP-SSM-10 ?

1 year 9 months ago
Hi,CON-SU1-AS2A10K9 contract if for ASA+IPS bundle. If AIP-SSM-10 ws purchased...

sokakkar has commented on ASA NAT with Dual ISP's and Dual ASA's

1 year 9 months ago
Hi Mohammad,I am not sure if I understood your setup properly. But I don't...

sokakkar has commented on IPS Query

1 year 10 months ago
Hi Anukalp,It depends what events were showing up earlier. Do you have any...

sokakkar has commented on regular translation creation failed for protocol 46

1 year 10 months ago
Hi Christie,Ok, device is using SIP (5060) and H323 (1720). Generally...

sokakkar has commented on Site to site VPN issues

1 year 10 months ago
Hi Anthony,Glad to know that it works for Site A now. I checked the config and...

sokakkar has commented on ASA 55x5X - IPS license

1 year 10 months ago
No Problem Radek. Glad I could help!Please mark the correct answer to close...

sokakkar has commented on Site to site VPN issues

1 year 10 months ago
Hi Anthony,graeme2010 is right. The command i mentioned is already there in...

sokakkar has commented on Zone-based Firewall - Allow "established" flag?

1 year 10 months ago
Sure Paul. :-)Feel free to post in case you've any additional questions.-Sourav

sokakkar has commented on Site to site VPN issues

1 year 10 months ago
Hi Anthony,One thing which is missing is following command:same-security-...

sokakkar has commented on ASA 55x5X - IPS license

1 year 10 months ago
Hello Radek,IPS in ASA5500-X series has two serial numbers. One on chassis and...

sokakkar has commented on Zone-based Firewall - Allow "established" flag?

1 year 10 months ago
Hello Paul,'established' keyword in acl would again require ZBFW to have the...

sokakkar has commented on regular translation creation failed for protocol 46

1 year 10 months ago
Hi Christie,Can you post some more details like what protocol is used to make...

sokakkar has commented on ASA5505, SYN attack, ISP and IPS module

1 year 10 months ago
Hi Diego,As Julio mentioned, info has to be there. Do you have the 'show xlate...

sokakkar has commented on ASA5505, SYN attack, ISP and IPS module

1 year 10 months ago
Hello Diego,As far as IPS module in ASA is concerned, it is going to inspect...

sokakkar has commented on Cannot connect to ASA with ASDM or SSH - Firewall running ok

1 year 10 months ago
Hi James,With limited info available:http 192.168.100.0 255.255.252.0 outside...

sokakkar has commented on Reading Show capture output

1 year 10 months ago
Mahesh,Rule looks fine. You shouldn't see any traffic going out of ASA in...

sokakkar has commented on Reading Show capture output

1 year 10 months ago
Well, in that case ASA should deny the very first packet sent by client to...

sokakkar has commented on Reading Show capture output

1 year 10 months ago
Using IP or FQDN?Can you post the access-list?-Sourav

sokakkar has commented on Reading Show capture output

1 year 10 months ago
Mahesh,Here are the syn, syn-ack, ack for this connection:1: 17:04:58.488698...

sokakkar has commented on Disable logging of "Implicit Deny"

1 year 10 months ago
Hi Vincent,That tells the story then. If this is unexpected traffic to your...

sokakkar has commented on PIX Firewall pass-through VPN connection

1 year 10 months ago
Aasef- Sure this looks perfectly fine.-SouravPlease rate helpful posts and ask...

sokakkar has commented on Disable logging of "Implicit Deny"

1 year 10 months ago
Vincent,Can you paste some sample logs? Hide the IP's if you want.You mentioned...

sokakkar has commented on Reading Show capture output

1 year 10 months ago
Hi Mahesh,Add another acl for reverse flow as well:access-list CAP permit tcp...

sokakkar has commented on Disable logging of "Implicit Deny"

1 year 10 months ago
Hi Vincent,This log message is generated because someone is sending traffic...

sokakkar has commented on Reading Show capture output

1 year 10 months ago
Mahesh,Captures you pasted are unidirectional i.e. flow captured is only for...

sokakkar has commented on PIX Firewall pass-through VPN connection

1 year 10 months ago
Aasef,It would look something like this:For inside to outside/rsa/dmz access:...

sokakkar has commented on shared public IP with same tcp port (round robin/load balance)

1 year 10 months ago
Yes, that is correct.-SouravPlease rate the helpful posts, ask question if you...

sokakkar has commented on ftp mode passive

1 year 10 months ago
Hi Michal,Can you post the 'show run' for review and also captures once you've...

sokakkar has commented on Swap bootvar on 5505

1 year 10 months ago
As James mentioned, 8.3 or later will need more memory and also there is...

sokakkar has commented on PIX Firewall pass-through VPN connection

1 year 10 months ago
Hi Aasef,Glad to know that you figured the problem. Since you are connecting...

sokakkar has commented on Help with dynamic to static L2L

1 year 10 months ago
I don't think we can have multiple dynamic IP peers use diff pre-shared in such...

sokakkar has commented on ASA5540 to Cisco2650XM VPN issues

1 year 10 months ago
Thanks Daniel. I checked the output and we definately have a phase 1 policy...

sokakkar has commented on GAHHHH VPN Issue

1 year 10 months ago
Danny- Thanks for the update. I am glad that that we figured the problem.-...

Bio












sokakkar's Stats

Points302
Discussion started 0
Answers marked as Correct 25
Endorsed 0
Content Rated 7