How to determine if ASA is blocking port or not?
Hello world
I support the ASA according to the customer. I'm new to the world of the SAA.
Users especially to check whether or not ASA allows specfic port.
I don't know how I can check that.
Is it possible that I can determine if ASA is blocking port or not?
If ASA is blocking port what steps I must take to allow ASA allow specific port?
concerning
Mahesh
Hello
You can use the command packet--draw to get the results you're after... that is to say if a 10.1.1.10 client attempts to access google dns, you can use the following syntax:
plotter of entrance inside the 10.1.1.10 udp packets 53 8.8.8.8 53 detailed (I may have the syntax a bit but you can tab your way through this).
Thank you
Sent by Cisco Support technique iPad App
Tags: Cisco Security
Similar Questions
-
How to determine what type of USB port that I have on my computer?
I need to know if my computer will not accept a disk that requires a port USB 3.
How can I determine the type of USB ports on my computer?
Thank you
Yes... but you might encounter power problems if you try to use an external with a USB hub drive unless the hub or the external hard drive has its own power supply.
-
How Oracle determines an as key preserved table or not?
I tried to join employees and departments in the HR schema. Normally, the departments is not preserved key in the join operation. But I fixed in the view so that each service has exactly one employee, dept_no to become the key for the join. But still, he said, "cannot change the table not preserved key." Any tips? the type of join (left or right or inside or outside) does affect the mechanism on how Oracle determine which are preserved to key and which are not? Thank you.Hello
I would say yes, maybe can depend on join to condition paritially between tables 99% of the time. Because if you see the documentation it says
"It is not necessary the keys of a table to be selected to be key preserved. It is sufficient if the keys have been selected, then they would also be key (s) of the result of the join. "
'A table is kept if all keys in the table can also be a key to the result of the join key' - to turn the key role of role by providing the unique character.
-Pavan Kumar N
-
How to determine the USB 2.0 ports on the machine.
Original title: Usb 2.0 Ports.
My Device Manager lists 8 Usb ports, including Usb 2.0 2. How can I determine which ports are 2.0?
Hello
To determine the USB (Universal Serial Bus) 2.0 port, you can connect any USB device to each port & check in Device Manager at the same time to check which of the 8 USB 2.0 ports.
Hope the helps of information.
Concerning
Joel S
Microsoft Answers Support Engineer
Visit our Microsoft answers feedback Forum and let us know what you think. -
How can I stop the firewall blocking ports of gaming?
Original title: port blocking of firewall, that can not unlock & failure audit
I had a very annoying problem with my ports lately. I don't think I did something to change my settings, but I had a little virus at the time, it began to happen, I get removed (at least for the most part...)
Basically, my ports that I opened for the games were closed, even though I had port-forwarded correctly in my router configuration pages. I finally tried to disable the firewall of Windows completely and all of a sudden my ports were working. I tried to set my firewall settings if it would work when turned on while keeping my ports are open, but I could not understand. I decided to just completely remove all settings and restore the default configuration. In this way, I have just wait for notification that appears and says "Windows Firewall has prevented blah blah blah" and ask me to block the incoming/outgoing connection. But I never got this message. "Not a huge deal," I thought, ' I'll just add it manually then.» I continued to come in the error "an error occurred during the addition of the rule. Error: Access is denied. Status: the rule has been analyzed with success of the store. "I tried to add port rules, the rules of the program, custom rules, but none of them worked. I decided to check the event viewer later and noticed Audit failures when I opened my programs that relied on the ports. The error says "firewall Windows could not notify the user that he blocked an application to accept inbound connections on the network. Error code: 5 (event ID: 5032)
Now, after a lot of googling and few answers, I've seen people make that same mistake, but with the error Code: 2 perhaps, but I don't think that I've never seen more than one person getting an error code 5. Does anyone have an idea how to solve this problem? The only way I can do what I have (almost) everything want right now is away the Windows Firewall, but I always get problems of port with a couple of my programs. The best explanation is that this virus tinkered around with my firewall settings, but there may be a way to fix it through the registry editor?
Hello
Thanks for posting the question in the Microsoft Community forums.
I would recommend posting your query in the TechNet Forums. The community of IT professionals in the following TechNet forum will be able to help you the best.
http://social.technet.Microsoft.com/forums/en/category/w7itpro/
In the future, you face problems related to Windows, if you post the question on this forum.
-
How to configure anti-spam to block addresses email not valid
We receive a lot of spam that (fortunately screenshots of anti-spam) are directed to a non-existent user in our Organization. Is there a way to configure anti-spam to reject completely?
I have a TZ205 with comprehensive services. firmware update
Antispam on the firewall is no not no matter what filtering of recipients.
Antispam on the firewall uses a Proxy connection and depends on the mail server to reject invalid recipient.
The complete Email Security product rejects invalid recipients (Protection of DHA)
The Hosted Email Security currently does not DHA Protection but it is added at a later date.
-
How dermine if one a DB Table exist or not exist?
That is the question, I need determine if a 'X' DB Table exists, if the table is to run a 'Y' VI, if it not exist, create it and determine its column properties...
If the Table exists go to TRUE and make the next step, if the Table doesn't exist pass false and.
I want is to know how to determine if the table exists or does not exist because if I make tha code in the current image and the Table exists VI showme error, if the Table exists, avoid the code, then continue with the normal process, and I want to avoid this problem.
I have some ideas to solve this the most logical problem is to use the DB tables.VI list but how I can change the result of a Boolean check (this is to select the case in the picture).
Close!
-
How can I make sure that any firewalls (versions of software or hardware) does not block port 443 to access?
Hi Anna_753,
Usually, you would receive messages from any program if it is impossible to access the port.
If you want to check if the port is accessible, then you will need to check the firewall settings.
Each firewall has its own parameters for ports of the computer.
-
How to determine the number of highlight ' to write ' for DAQmx generate analog output?
On the configuration of the stage for DAQmx generate analog output, there is a field "value to write. I can't find any explanation for what it is, how it determines the value to enter, nor what he writes. I am trying to go through the tutorials and it cling.
Someone would give an explanation?
Hello
To write value specifies the value to write in the channels, lines or ports selected in string parameters. In other words, this value will be the value of your DC output (for example if you enter 5, your output will be 5V). To get information on different fields in SignalExpress, access help"context-sensitive help. A pane will appear in your work environment that displays the coordinates of the field when you place your pointer over them.
For new users of SignalExpress:
Generation of DC signals with NI DAQmx devices: step in the DAQmx build, select 1 sample (on request) in the generation Mode dropdown. You can select a programmatic input to generate, or you can remove the check mark from the check box use programmatic input and specify a value for generating in the field of value to write . NOR-DAQmx help also provides additional information about the data generation.
Best regards
M Ali
Technical sales engineer
National Instruments
-
External network access to blocked port 80
I have blocked port 80 (inbound - firewall) on my Windows 2008 R2 server. I want a few users access to port 80 of the external network. How can I do? External network will have a static public ip address.
Thank you for your time in advance.Post in the Windows Server Forums:
http://social.technet.Microsoft.com/forums/en-us/category/WindowsServer/ -
Original title: unable to print. Reference Dell 944 communication usb port is not available.
Message says 'check your firewall settings to ensure the printer communication is not blocked. Printer has worked faithfully until the problems started with the XP Home operating system. To cut a long story short ram upgraded to 2 GB, all unnecessary programs identified and technician Microsoft contacted to solve problems. I was informed of problems caused by 3rd software party conflicts. Kaspersky was apparently the culpit. Dell Inspiron 32 now much faster but the printer will not work little matter what I do. I tried to reload with drivers & utility CD, drivers uninstalled & reinstalled on the site of all nothing is? Can someone help?
DavidNicholsonXN,
How to download and install drivers in the correct order
also try to read...
The owners of all-in-one printer Dell 944 thread (W7)
Let the printer after Kaspersky
Rick
-
Internet service provider blocks Port 80 # & 1024
How to choose which ports to open are? Randomly? I think I'm good with the configuration of the part, but don't know which to choose... dm
Solved! Finally went back to work and connected then and there it was... I guess than TZO too k care the blocking port "80". I wonder why you need to open two ports? One is a back-up? Or, you need and and one out?
-
How many interfaces in asa 5510
can someone pls tell me how many interfaces in asa 5510.and we can add more interfaces to it.
concerning
Assane
Hi assane,.
When you order the ASA5510, you can choose between (option Setup/Noo-Noo fixed to add more ports interface):
1 ASA5510 device comes with 3 x FastEthernet, more 1xmanagement port (FastEthernet)
ASA5510-BUN-K9: Cisco ASA 5510 Firewall Edition includes 3 Fast Ethernet interfaces, 250 peers IPSec VPN, SSL VPN 2 peers 3DES/AES license, or
2 ASA5510 comes with 5xFastEthernet, most 1xmanagement port (FastEthernet).
Cisco ASA 5510 Security Plus Firewall Edition includes 5 interfaces Fast Ethernet, 250 VPN IPSec peers, 2 peers of SSL VPN, high availability active / standby, 3DES/AES license
http://www.Cisco.com/en/us/products/ps6120/products_data_sheet0900aecd802930c5.html
Rgds,
AK
-
On recommendation of Cisco, I have blocked ports TCP 3127-3199 out my interface "inside". Seems that these are commonly used for mydoom ports. Now, when the user's browser uses these ports as source ports they don't have until it exceeds this window. Has anyone seen elsewhere this problem and how do you work around it?
Roland,
A MyDoom attack can be launched from the outside (entering your local network) or inside (out to your local network).
IF YOU WANT TO BLOCK INCOMING OF MYDOOM ATTACKS:
If this traffic passes through a firewall, then by default, the sessions opened from the outside are blocked unless explicitly allowed entering. If you use a router with ACL, then you must configure an ACL in the INCOMING direction and apply it to the interface from the OUTSIDE as such:
--------------------------
For routers:
access-list 111 tcp refuse any any 3127 3199 Beach
interface
IP access-group 111 to
--------------------------
In this case, you'll experience the question that you're already because when a web server returns a bunch of session to the client (browser), then the destination ports match the ACL and the router will drop the session. To remedy this, we can apply an IOS Firewall to the external interface of the router. The ACL to block incoming attacks of MyDoom cannot while the router will maintain session state information in its table.
IF YOU WANT TO BLOCK OUTBOUND MYDOOM ATTACKS:
Then the ACL must be applied 'in' on the 'inside' interface
--------------------------
For the PIX Firewall:
access-list 111 tcp refuse any any 3127 3199 Beach
access ip-list 111 allow a whole
Access-group 111 in the interface inside
--------------------------
--------------------------
For the router:
access-list 111 tcp refuse any any 3127 3199 Beach
interface
IP access-group 111 to
--------------------------
This should provide you with enough information to work on your issue.
Paragraphs
-
HOW connection NAT on ASA 5505
Hello guys
first of all, thank fully any community of cisco, they helped me a lot withouth expert and University...
Today, I have some question on NAT
We HAVE site-to-site VPN, his job very well. our company demand of patern to use the public Ip address instead of the ip address private field of encryption. and they said, you have to NAT for you the private to the PUblic ip address. really, we don't know how NAT for cisco ASA 5505.
THIS IS THE CASE
OUR COMPANY = USES CISCO ASA 5505
OUR PUBLIC IP ADDRESS: 155.155.1555.20
PRIVATE IP: 192.168.7.2 SOUND LINUX SERVER, THEN HOW WE CAN NAT THIS IP PRIVATE AND CHANGE IN PUBLIC
Thank you very much
If you have 1 public IP address and it is assigned to your ASA outside interface, then you need to configure static PAT (you will need to know what exactly they want to access and configure the specific port they need).
However, if you have a free public IP address, then you need not to know exactly what they need to get to and you can configure the linux server using the public IP to spare.
Also, they need access to the linux server using public IP via the VPN tunnel (encrypted)? or they are happy to access only via the internet (clear text)?
Maybe you are looking for
-
Where can I find video DownloadHelper Firefox Add-on preferences?
I downloaded Video DownloadHelper to convert flv to wmv. After the installation, I get this message: "You must now open the video extension DownloadHelper Firefox preferences, choose the 'Conversion' tab and click on the 'Activé' checkbox to start co
-
I need help with an installation failure to interpret and troubleshoot a Setup log.
Background: A few years ago, many editors of cinema used Final Cut Pro 6 (also contained in Final Cut Studio 2) for their editing projects. Shared Apple Final Cut X uses a different format that is not compatible with FCP6. Sometimes, these editors
-
Win XP Prof SP3 using: X 2 AMD Athlon 64 Dual Core processor 5200 + w / 4 Gig of Ram Info from the application event viewer; Failing application explorer.exe, version 6.0.2900.5512, failed module comctl32.dll, version 6.0.2900.5512, address failure 0
-
I have a HP photosmart all-in-one printer that takes hp364 ink cartridges. I bought cartridges setup hp364 from ebay and just installed their and I get an incompatible cartridge message. I checked online and found that they are the same as standard
-
Reference DELL demanding $80 for a share of $5.90
Laptop Inspiron 5758 bought April 2015, had the power switch replaced under premium support Oct - 15, 2 days after the end of my premium (to July 19) support switch has not yet. Card replacement (of the power T2CVC button) costs between $5.90 and $15