Cisco ASA - Recent Questions, Troubleshooting & Support - Page 4
How do I recover firewall password?
You may refer to the steps in the link below:
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/trouble.html#wp1049302
I hope this helps!
Checksum verification on compression loader failed
Checksum verification has something to do with the communication of this device.
Since you already perform the factory reset, the only thing that I could think of is that the BIOS (internal component) of this device went bad. That BIOS should be reprogram or replace.
Unfortunately, you need to contact the manufacturer and have them repair it for you. Only the manufacturer can repair this.
Thank you!
Ipsec problem in asa
Use the ping command to check the network or find whether the application server is reachable from your network. It can be a problem with the maximum segment size (MSS) for transient packets that traverse a router or PIX/ASA device, specifically TCP segments with the SYN bit set.
Block websites on cisco asa 5510.
All websites or specific ones?
If you want to block all web traffic, a straightforward rule preventing HTTP traffic (TCP port 80) as well as HTTPS (port 443) will block any and all web access.
If you just want to block specific sites, I'd recommend an access control list (ACL) configured to deny traffic to those specific site's IP addresses.
Forgoten en mode password, want to flatten
No need to flatten the configuration and reconfigure:
http://www.cisco.com/en/US/docs/security/asa/asa71/configuration/guide/trouble.html#wp1058131
Once you use this, you can reset the password to anything you want. Please keep in mind you have to physically power down the unit, connect a console, then power up. Then hit "Break" within your terminal program and follow the instructions. Pretty simple, actually.
Good luck!
Replacing a PIX 515E with an ASA 5510
Best way to migrate is to take the configuration of the old PIX and TFTP it to a PC or other server for safe keeping.
Then boot up the ASA in a lab environment and TFTP the configuration to the new unit and reboot. There will be some commands that don't translate correctly, but you can compare the configurations to each other to make sure all the access lists and NAT statements get transferred across.
Keep in mind that the PIX and the ASA name their interfaces differently, so there may be errors when you transfer the configuration. You can edit the configuration offline with something like Notepad and change the names of the interfaces to have it work.
Good luck!
How to block some website on asa 5505?
do the name resolution for the website and write a policy to block the traffic from your trusted network to that website ip address. If required i shall write the policy and give it to you, for this i need the following details.
1. Name of the websites
2. Local network range (LAN ip address with SNM)
But this is very hard for you if there is more number of websites, For this you shall integrate a URL filtering software like WebSense, N2H2 etc with your firewall.
Problem in installing the asdm image ASA 5520 ver 7.1
I had this same issue on my ASA 5520.
1. Copy the config and IOS image to a tftp server.
2. Format flash (disk0)
3. set rommon server, ip addy, and file settings.
4. tftpdnld
5. Once the system has booted to the image copy the asa image file, asdm image file, and config to flash
6. configure asdm image default location and reload
Not finding what you are looking for?