sokakkar

Member Since: Oct 09, 2009

English
sokakkar commented on ASA 8.4(4) to ASA 9.1.2 in Firewalling 3 years ago

Awesome! :-)

sokakkar commented on CBAC - FTP and PAT in Firewalling 3 years ago

Hi,Based on the information which you provided earlier, data connection from client to server is...

sokakkar commented on ASA 5515 IPS management access in Intrusion Prevention Systems/IDS 3 years ago

Hi Vladimir,Sounds great! You really figured it out yourself!Please rate the post which provided...

sokakkar commented on HA Configuration Issue in Firewalling 3 years ago

If you're not openind a TAC case, keep looking at Cisco.com for any new versions of ASDM, hopefully...

sokakkar commented on HA Configuration Issue in Firewalling 3 years ago

Awesome! Glad I could help!

sokakkar commented on HA Configuration Issue in Firewalling 3 years ago

Hi Eddie,The BIOS Flash size is not used/compared between mates when determining whether two...

sokakkar commented on ASA 5515 IPS management access in Intrusion Prevention Systems/IDS 3 years ago

Hi Vladimir,Yups, that is one issue which is seen. Java downgrade should fix this. If not, enable...

sokakkar commented on how to completely ignore an IP address in Intrusion Prevention Systems/IDS 3 years ago

Hi Will,Like Karsten mentioned, event action filter is the way to ensure no IPS processing for the...

sokakkar commented on ips license renew in Intrusion Prevention Systems/IDS 3 years ago

Hi,You can check the license status on IDM/IME on home page. Or using 'show version' in IPS CLI....

sokakkar commented on ASA 5515 IPS management access in Intrusion Prevention Systems/IDS 3 years ago

Hi Vladimir,Here is how packets are going to flow:- From management machine to IPS- IPS will reply...

sokakkar commented on CBAC - FTP and PAT in Firewalling 3 years ago

Hi Paul,To check if CBAC is dropping it. Enable logs on router:Ip inspect log drop-pktlogg buffered...

sokakkar commented on TACACS+ fallback problem ASA 5520 in Firewalling 3 years ago

Hi Arun,Can you take captures on inside interface of ASA when problem occurs? Put the captures in...

sokakkar commented on The ASA5500 created Crypto Archive File as a Soft Reset was necessary in Firewalling 3 years ago

Hello,I would suggest opening a TAC case for this.Thanks.- Regards,Sourav Kakkar

sokakkar commented on HA Configuration Issue in Firewalling 3 years ago

Hi Eddie,Sounds like you have some SSM module on one of the ASA's. Can you paste 'show module 1...

sokakkar commented on asp drop - First TCP packet not SYN (tcp-not-syn) in Firewalling 3 years ago

Hi,Since it is a RST packet coming from client IP destined to proxy server IP on ASA's interface (...

sokakkar commented on High cpu load - burst traffic in Firewalling 3 years ago

Hi,Is the ASA running high on CPU constantly or do you see CPU spikes?Can you post 'show tech' from...

sokakkar commented on ASA 8.4(4) to ASA 9.1.2 in Firewalling 3 years ago

Hi Soeren,The upgrade is fairly staright forward, no changes in NAT or acl or any other portion of...

sokakkar commented on how to buy license? for AIP-SSM-10 ? in Intrusion Prevention Systems/IDS 3 years ago

Hi,CON-SU1-AS2A10K9 contract if for ASA+IPS bundle. If AIP-SSM-10 ws purchased as a spare the...

sokakkar commented on ASA NAT with Dual ISP's and Dual ASA's in Firewalling 3 years ago

Hi Mohammad,I am not sure if I understood your setup properly. But I don't think the VPN will go...

sokakkar commented on IPS Query in Intrusion Prevention Systems/IDS 3 years ago

Hi Anukalp,It depends what events were showing up earlier. Do you have any saved events?-Sourav

sokakkar commented on regular translation creation failed for protocol 46 in Firewalling 3 years ago

Hi Christie,Ok, device is using SIP (5060) and H323 (1720). Generally inspection is needed on ASA...

sokakkar commented on Site to site VPN issues in VPN 3 years ago

Hi Anthony,Glad to know that it works for Site A now. I checked the config and it looks ok to me:...

sokakkar commented on ASA 55x5X - IPS license in Firewalling 3 years ago

No Problem Radek. Glad I could help!Please mark the correct answer to close this topic, if you've...

sokakkar commented on Site to site VPN issues in VPN 3 years ago

Hi Anthony,graeme2010 is right. The command i mentioned is already there in your config, basically...

sokakkar commented on Zone-based Firewall - Allow "established" flag? in Firewalling 3 years ago

Sure Paul. :-)Feel free to post in case you've any additional questions.-Sourav

sokakkar commented on Site to site VPN issues in VPN 3 years ago

Hi Anthony,One thing which is missing is following command:same-...

sokakkar commented on ASA 55x5X - IPS license in Firewalling 3 years ago

Hello Radek,IPS in ASA5500-X series has two serial numbers. One on chassis and another on PCB:...

sokakkar commented on Zone-based Firewall - Allow "established" flag? in Firewalling 3 years ago

Hello Paul,'established' keyword in acl would again require ZBFW to have the connection table entry...

sokakkar commented on regular translation creation failed for protocol 46 in Firewalling 3 years ago

Hi Christie,Can you post some more details like what protocol is used to make voice call ex SIP?Can...

sokakkar commented on ASA5505, SYN attack, ISP and IPS module in Firewalling 3 years ago

Hi Diego,As Julio mentioned, info has to be there. Do you have the 'show xlate' when the issue was...

sokakkar commented on ASA5505, SYN attack, ISP and IPS module in Firewalling 3 years ago

Hello Diego,As far as IPS module in ASA is concerned, it is going to inspect only the traffic which...

sokakkar commented on Cannot connect to ASA with ASDM or SSH - Firewall running ok in Firewalling 3 years ago

Hi James,With limited info available:http 192.168.100.0 255.255.252.0 outside                   ...

sokakkar commented on Reading Show capture output in Firewalling 3 years ago

Mahesh,Rule looks fine. You shouldn't see any traffic going out of ASA in captures. Just clear the...

sokakkar commented on Reading Show capture output in Firewalling 3 years ago

Well, in that case ASA should deny the very first packet sent by client to server i.e. SYN.Can you...

sokakkar commented on Reading Show capture output in Firewalling 3 years ago

Using IP or FQDN?Can you post the access-list?-Sourav

sokakkar commented on Reading Show capture output in Firewalling 3 years ago

Mahesh,Here are the syn, syn-ack, ack for this connection:1: 17:04:58.488698 802.1Q vlan#1 P0 192....

sokakkar commented on Disable logging of "Implicit Deny" in Firewalling 3 years ago

Hi Vincent,That tells the story then. If this is unexpected traffic to your server (which I am sure...

sokakkar commented on PIX Firewall pass-through VPN connection in Firewalling 3 years ago

Aasef- Sure this looks perfectly fine.-SouravPlease rate helpful posts and ask questions if you...

sokakkar commented on Disable logging of "Implicit Deny" in Firewalling 3 years ago

Vincent,Can you paste some sample logs? Hide the IP's if you want.You mentioned that log file is...

sokakkar commented on Reading Show capture output in Firewalling 3 years ago

Hi Mahesh,Add another acl for reverse flow as well:access-list CAP permit tcp host 195.157.47.7 eq...

sokakkar commented on Disable logging of "Implicit Deny" in Firewalling 3 years ago

Hi Vincent,This log message is generated because someone is sending traffic which you have not...

sokakkar commented on Reading Show capture output in Firewalling 3 years ago

Mahesh,Captures you pasted are unidirectional i.e. flow captured is only for 192.168.52.5 > 195....

sokakkar commented on PIX Firewall pass-through VPN connection in Firewalling 3 years ago

Aasef,It would look something like this:For inside to outside/rsa/dmz access:object-group network...

sokakkar commented on shared public IP with same tcp port (round robin/load balance) in Firewalling 3 years ago

Yes, that is correct.-SouravPlease rate the helpful posts, ask question if you need any further...

sokakkar commented on ftp mode passive in Firewalling 3 years ago

Hi Michal,Can you post the 'show run' for review and also captures once you've those?-Sourav

sokakkar commented on Swap bootvar on 5505 in Firewalling 3 years ago

As James mentioned, 8.3 or later will need more memory and also there is significant difference in...

sokakkar commented on PIX Firewall pass-through VPN connection in Firewalling 3 years ago

Hi Aasef,Glad to know that you figured the problem. Since you are connecting from outside to rsa,...

sokakkar commented on Help with dynamic to static L2L in VPN 3 years ago

I don't think we can have multiple dynamic IP peers use diff pre-shared in such setup. -Sourav

sokakkar commented on ASA5540 to Cisco2650XM VPN issues in VPN 3 years ago

Thanks Daniel. I checked the output and we definately have a phase 1 policy match on two devices....

sokakkar commented on GAHHHH VPN Issue in VPN 3 years ago

Danny- Thanks for the update. I am glad that that we figured the problem.-SouravPlease rate the...

Bio












sokakkar's Stats

Points317
Discussion started 0
Answers marked as Correct 25
Endorsed 0
Content Rated 7