Comments for Networks Training http://www.networkstraining.com IP Networks Training and Tutorials Fri, 03 Feb 2012 16:50:38 +0000 hourly 1 http://wordpress.org/?v=3.3.1 Comment on How to Configure VLAN subinterfaces on Cisco ASA 5500 Firewall by Segun http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/comment-page-1/#comment-2550 Segun Fri, 03 Feb 2012 16:50:38 +0000 http://www.networkstraining.com/?p=117#comment-2550 Thanks, is working now. Thanks, is working now.

]]> Comment on How to Configure VLAN subinterfaces on Cisco ASA 5500 Firewall by Blog Admin http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/comment-page-1/#comment-2548 Blog Admin Wed, 01 Feb 2012 18:39:39 +0000 http://www.networkstraining.com/?p=117#comment-2548 Seb, As I understand you will have two different public IP ranges on the outside of the ASA? If this is correct, then you don't need to create another subinterface on the outside. Just leave the outside at subnet 1.1.1.0/28 and the ISP can route the new subnet 2.2.2.0 towards the outside ASA interface. You don't have to create another interface on ASA. Seb,

As I understand you will have two different public IP ranges on the outside of the ASA? If this is correct, then you don’t need to create another subinterface on the outside. Just leave the outside at subnet 1.1.1.0/28 and the ISP can route the new subnet 2.2.2.0 towards the outside ASA interface. You don’t have to create another interface on ASA.

]]> Comment on How to Configure VLAN subinterfaces on Cisco ASA 5500 Firewall by Blog Admin http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/comment-page-1/#comment-2547 Blog Admin Wed, 01 Feb 2012 18:36:41 +0000 http://www.networkstraining.com/?p=117#comment-2547 Segun, I suggest you to configure the interface on DMZ to perform PAT for inside users going to DMZ, <strong>global (dmz) 1 interface</strong> Try the above and let me know Segun,

I suggest you to configure the interface on DMZ to perform PAT for inside users going to DMZ,

global (dmz) 1 interface

Try the above and let me know

]]> Comment on How to Configure VLAN subinterfaces on Cisco ASA 5500 Firewall by Segun http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/comment-page-1/#comment-2546 Segun Wed, 01 Feb 2012 13:52:49 +0000 http://www.networkstraining.com/?p=117#comment-2546 I have CIsco ASA in my network, which i configure int e0 for outside, int e1 for inside and e2 for DMZ. The inside user can access the internrt, also the dmz, but the internal network can not access the DMZ. Inside ip 192.168.10.0, Dmz ip 10.10.2.0/24. I configure nat for global addrss on dmz. global (outside) 1 interface global (dmz) 1 10.10.2.10-10.10.2.30 255.255.255.0 nat (inside) 1 192.168.10.0 255.255.255.0 nat (dmz) 1 10.10.2.0 255.255.255.0 route outside 0.0.0.0 0.0.0.0 172.16.30.2 1 Any error on this config I have CIsco ASA in my network, which i configure int e0 for outside, int e1 for inside and e2 for DMZ.
The inside user can access the internrt, also the dmz, but the internal network can not access the DMZ.
Inside ip 192.168.10.0, Dmz ip 10.10.2.0/24.
I configure nat for global addrss on dmz.
global (outside) 1 interface
global (dmz) 1 10.10.2.10-10.10.2.30 255.255.255.0
nat (inside) 1 192.168.10.0 255.255.255.0
nat (dmz) 1 10.10.2.0 255.255.255.0
route outside 0.0.0.0 0.0.0.0 172.16.30.2 1
Any error on this config

]]> Comment on How to Configure VLAN subinterfaces on Cisco ASA 5500 Firewall by Seb http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/comment-page-1/#comment-2543 Seb Tue, 31 Jan 2012 08:26:32 +0000 http://www.networkstraining.com/?p=117#comment-2543 Hi, Many thanks for this fantastic article I have found almost everything I wanted but I still have a quick question. In my case, I have an ASA 5510 and my interface "Outside" connected to my ISP for Internet. The subnet give is a 1.1.1.0/28 and I have requested another subnet 2.2.2.0/28 and after reading your post, I have decided to create 2 sub interfaces but the switch I have is a basic one "Dell PowerConnect 2608" which is not manageable and where my ASA physical interface will be plugged. Do you think it will work correctly knowing that each sub interface is in somehow a VLAN? More over, should I add a route like: route Interface-Outside2 2.2.2.0 255.255.255.240 2.2.2.1 1 (where 2.2.2.1 is the IP used on the ISP router as a secondary subnet) In advance many thanks for your reply. Kind Regards, Seb Hi,
Many thanks for this fantastic article I have found almost everything I wanted but I still have a quick question.
In my case, I have an ASA 5510 and my interface “Outside” connected to my ISP for Internet. The subnet give is a 1.1.1.0/28 and I have requested another subnet 2.2.2.0/28 and after reading your post, I have decided to create 2 sub interfaces but the switch I have is a basic one “Dell PowerConnect 2608″ which is not manageable and where my ASA physical interface will be plugged. Do you think it will work correctly knowing that each sub interface is in somehow a VLAN?
More over, should I add a route like:
route Interface-Outside2 2.2.2.0 255.255.255.240 2.2.2.1 1
(where 2.2.2.1 is the IP used on the ISP router as a secondary subnet)
In advance many thanks for your reply.
Kind Regards,
Seb

]]> Comment on Cisco ASA Firewall Fundamentals ebook : Rapidshare and Torrent Free Download by Blog Admin http://www.networkstraining.com/cisco-asa-firewall-fundamentals-ebook-rapidshare-and-torrent-free-download/comment-page-2/#comment-2537 Blog Admin Fri, 27 Jan 2012 16:10:23 +0000 http://www.networkstraining.com/?p=403#comment-2537 Hi Oscar, I'm really glad that my book has helped you to enhance your knowledge on Cisco ASA firewall devices. I will be updating the book if major changes will be implemented by Cisco accordingly. Thanks Harris Hi Oscar,

I’m really glad that my book has helped you to enhance your knowledge on Cisco ASA firewall devices. I will be updating the book if major changes will be implemented by Cisco accordingly.

Thanks

Harris

]]> Comment on Cisco ASA Firewall Fundamentals ebook : Rapidshare and Torrent Free Download by Oscar Cid http://www.networkstraining.com/cisco-asa-firewall-fundamentals-ebook-rapidshare-and-torrent-free-download/comment-page-2/#comment-2536 Oscar Cid Thu, 26 Jan 2012 17:44:13 +0000 http://www.networkstraining.com/?p=403#comment-2536 Mr. Harris Andrea, I wrote you one time and you replied back, it was about a command in Class-Maps and you informed me that it was introduced in version 7.4, awesome!. I was very impressed, thank you. Just wanted to let you know, that the book, Cisco-ASA-Firewall-Fundamentals took me to the next level configuring and troubleshooting Cisco ASA 5510 firewalls. Perhaps let us know about your next book and include configurations for QoS on the firewall, since some VoIP providers are found now on the internet. Thank you again, regards Oscar Mr. Harris Andrea,
I wrote you one time and you replied back, it was about a command in Class-Maps and you informed me that it was introduced in version 7.4, awesome!. I was very impressed, thank you.
Just wanted to let you know, that the book, Cisco-ASA-Firewall-Fundamentals took me to the next level configuring and troubleshooting Cisco ASA 5510 firewalls.
Perhaps let us know about your next book and include configurations for QoS on the firewall, since some VoIP providers are found now on the internet.
Thank you again, regards
Oscar

]]> Comment on How To Install Cisco Call Manager Express CME Software by Brian Hurlow http://www.networkstraining.com/how-to-install-cisco-call-manager-express-cme-software/comment-page-1/#comment-2527 Brian Hurlow Wed, 18 Jan 2012 15:49:36 +0000 http://www.networkstraining.com/?p=355#comment-2527 I want to install newer CallManager 4.0 phone loads and use them with CCME. How can I do that? I have heard something about Zipscan to remove phone loads but don’t know the exact procedure of doing it. This is a basic level article dealing with basic installation. I have seen some articles regarding integration of CCME with Asterisk PBC so how can I relate it to VoIP services? I want to install newer CallManager 4.0 phone loads and use them with CCME. How can I do that? I have heard something about Zipscan to remove phone loads but don’t know the exact procedure of doing it. This is a basic level article dealing with basic installation. I have seen some articles regarding integration of CCME with Asterisk PBC so how can I relate it to VoIP services?

]]> Comment on How to Configure VLAN subinterfaces on Cisco ASA 5500 Firewall by Blog Admin http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/comment-page-1/#comment-2524 Blog Admin Tue, 17 Jan 2012 18:46:02 +0000 http://www.networkstraining.com/?p=117#comment-2524 David, Yes, you can enable up to 50 vlans (subinterfaces) on asa5510 basic license. See the following post how to do this: http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/ David,

Yes, you can enable up to 50 vlans (subinterfaces) on asa5510 basic license. See the following post how to do this:

http://www.networkstraining.com/how-to-configure-vlan-subinterfaces-cisco-asa-5500-firewall/

]]> Comment on Cisco ASA 5500 Dual ISP Connection by Blog Admin http://www.networkstraining.com/cisco-asa-5500-dual-isp-connection/comment-page-1/#comment-2523 Blog Admin Tue, 17 Jan 2012 18:42:52 +0000 http://www.networkstraining.com/?p=26#comment-2523 waleed, You are right. The configuration above is mainly for redundancy when you have only outbound traffic. waleed,

You are right. The configuration above is mainly for redundancy when you have only outbound traffic.

]]>