0% found this document useful (0 votes)

306 views14 pages

Cisco ASA Configuration Guide

The document discusses configurations made on a Cisco ASA firewall including hostname configuration, interface configurations for the WAN and LAN interfaces, static route configuration, enabling SSH and Telnet, allowing ICMP ping over the WAN, access control policies for HTTP and DNS, blocking Telnet for LAN users, object configurations for networks, hosts, ranges and services, and configuring dynamic NAT for the LAN network.

Uploaded by

Azaan Khan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

306 views14 pages

Cisco ASA Configuration Guide

Uploaded by

Azaan Khan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

Host Name configuration

Cisco asa ( config-if) #hostname ASA-HYD

Wan interface configuration with static ip address

Cisco asa ( config-if) # int g1/0

Cisco asa ( config if ) # ip address [Link] [Link]

Cisco asa ( config if ) # name if WAN

Cisco asa ( config if ) # security-level 0

Cisco asa ( config if ) #no shut

Wan interface configuration with dhcp ( Broadband connection)

Cisco asa ( config if ) int g0/1

Cisco asa ( config if ) ip address dchp setroute

Static Route configuration

Cisco asa ( config if)#route outside [Link] [Link] [Link]

Enable Telnet

Enabling SSH

Cisco asa ( config if)#domain-name [Link]

Cisco asa ( config if)# crypto key generate rsa

Cisco asa ( config if)#username user1 password user1

Cisco asa ( config if)aaa authentication ssh console LOCAL

Cisco asa ( config if)# ssh [Link] [Link] LAN

Lan interface configuration

Cisco asa ( config-if) # int g0/0

Cisco asa ( config if ) # ip address [Link] [Link]

Cisco asa ( config if ) # name if LAN

Cisco asa ( config if ) # security-level 100

Cisco asa ( config if ) #no shut

Allowing ping ( Icmp) over wan interface

Need to change Default policy-map global_policy

Cisco asa ( config if )# policy-map global_policy

Cisco asa ( config if )#class inspection_default

Cisco asa ( config if )# inspect icmp

Cisco asa ( config if )#exit

Creating access policies for allowing http services

Cisco asa ( config-if) # access-list access_policy permit tcp [Link] [Link] any eq 80

Cisco asa ( config-if) # access-list access_policy permit udp [Link] [Link] any eq 53

Cisco asa ( config-if) # access-group access-policy in interface LAN

Blocking telnet and allowing all services for lan users

Cisco asa ( config-if) #access-list test deny tcp [Link] [Link] any eq 23

Cisco asa ( config-if) #access-list test permit ip any any

Cisco asa ( config-if) #access-group test in interface LAN

Cisco asa ( config-if) #wr

Cisco asa ( config-if) #exit

OBJECTS:

Cisco asa ( config-if) #object network shaik-pc

Cisco asa ( config-if) # host [Link]

Cisco asa (config-if) #exit

Creating Object by using ip range

Cisco asa (config-if) #object network test_range

Cisco asa (config-if) #range [Link] [Link]

Cisco asa (config-if) #exit

Creating object for Lan_network

Cisco asa (config-if) #object network Lan_Network

Cisco asa (config-if) #subnet [Link] [Link]

Cisco asa (config-if) #exit

Creating Service Objects

Cisco asa (config-if) #object service RDP

Cisco asa (config-if) #service tcp destination eq 3389

Creating Object Groups

ACLS
Configuring dynamic nat

Ciscoasa(config)# object network public_pool

Ciscoasa(config-network-object)# range [Link] [Link]

Ciscoasa(config-network-object)#exit

Ciscoasa(config)#object network Lan_net

Ciscoasa(config-network-object)#subnet [Link] [Link]

Ciscoasa(config-network-object)#nat (LAN,WAN) dynamic public_pool

Ciscoasa(config)#

ccnp4 Labaration Document
100% (3)
ccnp4 Labaration Document
358 pages
Cisco Router Configuration Commands
100% (1)
Cisco Router Configuration Commands
4 pages
DHCP Snooping and SSH Configuration
No ratings yet
DHCP Snooping and SSH Configuration
7 pages
Switch Command CISCO
No ratings yet
Switch Command CISCO
152 pages
Ccna 2 Commands
100% (1)
Ccna 2 Commands
4 pages
Cisco Router & Switch Commands Guide
No ratings yet
Cisco Router & Switch Commands Guide
2 pages
9.4.1.7 Lab - Configuring ASA 5510 Basic Settings and Firewall Using ASDM - Instructor
No ratings yet
9.4.1.7 Lab - Configuring ASA 5510 Basic Settings and Firewall Using ASDM - Instructor
56 pages
125 Custom Student Lab Manual
No ratings yet
125 Custom Student Lab Manual
113 pages
Troubleshooting Switch Media Issues Guide
No ratings yet
Troubleshooting Switch Media Issues Guide
14 pages
Cisco ASA Series General Operations CLI Configuration Guide, 9.2 PDF
No ratings yet
Cisco ASA Series General Operations CLI Configuration Guide, 9.2 PDF
1,164 pages
Basic Router Configuration Lab Guide
No ratings yet
Basic Router Configuration Lab Guide
11 pages
Cisco Router NAT and DHCP Configuration
No ratings yet
Cisco Router NAT and DHCP Configuration
1 page
Router Configuration Commands Guide
No ratings yet
Router Configuration Commands Guide
3 pages
E2 Lab 1 5 2
No ratings yet
E2 Lab 1 5 2
11 pages
9.3.2.13 Lab - Configuring and Verifying Extended ACLs
No ratings yet
9.3.2.13 Lab - Configuring and Verifying Extended ACLs
8 pages
Lab 9.8.1 Managing Network Performance Using Content-Based Weighted Fair Queuing (CBWFQ) and Low Latency Queuing (LLQ)
No ratings yet
Lab 9.8.1 Managing Network Performance Using Content-Based Weighted Fair Queuing (CBWFQ) and Low Latency Queuing (LLQ)
7 pages
Configuring MPLS Network With Frame Relay
No ratings yet
Configuring MPLS Network With Frame Relay
13 pages
Dual WAN Connection On Cisco With Policy-Based Routing (PBR) Pierky's Blog
No ratings yet
Dual WAN Connection On Cisco With Policy-Based Routing (PBR) Pierky's Blog
9 pages
10 Steps To Troubleshoot Wireless Connection Problems
No ratings yet
10 Steps To Troubleshoot Wireless Connection Problems
20 pages
BGP Tutorial
No ratings yet
BGP Tutorial
100 pages
Lab 4.4 Comparing Queuing Strategies
No ratings yet
Lab 4.4 Comparing Queuing Strategies
45 pages
VLSM Configuration for Network Design
No ratings yet
VLSM Configuration for Network Design
11 pages
Cisco IOS IP SLAs Configuration Guide
No ratings yet
Cisco IOS IP SLAs Configuration Guide
332 pages
Command Reference, Cisco IOS XE Gibraltar 16.12.x (Catalyst 9300 Switches)
No ratings yet
Command Reference, Cisco IOS XE Gibraltar 16.12.x (Catalyst 9300 Switches)
1,836 pages
OSPF Authentication II: Objective Lab Topology
No ratings yet
OSPF Authentication II: Objective Lab Topology
9 pages
Configuring OSPF Stub Area on Huawei
No ratings yet
Configuring OSPF Stub Area on Huawei
4 pages
EWAN Lab 2 5 3 Instructor
No ratings yet
EWAN Lab 2 5 3 Instructor
10 pages
Modular QoS CLI Configuration Guide
No ratings yet
Modular QoS CLI Configuration Guide
6 pages
Computer Communications Lab Manual
No ratings yet
Computer Communications Lab Manual
81 pages
10.6.11 Lab - Use Tera Term To Manage Router Configuration Files - ILM
No ratings yet
10.6.11 Lab - Use Tera Term To Manage Router Configuration Files - ILM
11 pages
Cisco IOS QoS Command Reference
No ratings yet
Cisco IOS QoS Command Reference
1,783 pages
Implementing Multiple Spanning Tree
No ratings yet
Implementing Multiple Spanning Tree
13 pages
CCNA3 FINAL (91,8%) : WWW - Ccna4u.tk WWW - Ccna4u.info
No ratings yet
CCNA3 FINAL (91,8%) : WWW - Ccna4u.tk WWW - Ccna4u.info
30 pages
CCNA 3 Exploration ESwitching Final Exam Form2 V 4.0
No ratings yet
CCNA 3 Exploration ESwitching Final Exam Form2 V 4.0
17 pages
Lab 1.4.4 Implementing Quality of Service With Priority Queuing
No ratings yet
Lab 1.4.4 Implementing Quality of Service With Priority Queuing
4 pages
Chapter 5 Exam Overview and Details
100% (11)
Chapter 5 Exam Overview and Details
9 pages
Router Configuration and IOS Overview
No ratings yet
Router Configuration and IOS Overview
35 pages
ROUTE Chapter 5 - CCNP ROUTE (Version 6.0)
No ratings yet
ROUTE Chapter 5 - CCNP ROUTE (Version 6.0)
10 pages
Assessment System: Take Assessment - SWITCH Chapter 7 - CCNP SWITCH (Version 6.0)
100% (1)
Assessment System: Take Assessment - SWITCH Chapter 7 - CCNP SWITCH (Version 6.0)
7 pages
Cisco SENSS Exam Prep Guide
No ratings yet
Cisco SENSS Exam Prep Guide
114 pages
Cisco ASA Firewall Commands Cheat Sheet
100% (1)
Cisco ASA Firewall Commands Cheat Sheet
10 pages
Cisco ASA Firewall Commands - Cheat Sheet
No ratings yet
Cisco ASA Firewall Commands - Cheat Sheet
8 pages
Configuration of Cisco ASA Firewall
No ratings yet
Configuration of Cisco ASA Firewall
3 pages
Cisco ASA Firewall Basics
No ratings yet
Cisco ASA Firewall Basics
2 pages
ASA Administration: Basic Commands
No ratings yet
ASA Administration: Basic Commands
2 pages
Cisco ASA Firewall Configuration Guide
No ratings yet
Cisco ASA Firewall Configuration Guide
9 pages
Digo Learn
No ratings yet
Digo Learn
41 pages
ASA Firewall Configuration Guide
No ratings yet
ASA Firewall Configuration Guide
2 pages
CCNA Command Cheat Sheet 2025
No ratings yet
CCNA Command Cheat Sheet 2025
8 pages
Asa Essentials Part 1
No ratings yet
Asa Essentials Part 1
24 pages
CCNA 2.0 Cisco Commands Guide
No ratings yet
CCNA 2.0 Cisco Commands Guide
8 pages
Cisco ASA 5506-X Firewall Setup Guide
No ratings yet
Cisco ASA 5506-X Firewall Setup Guide
18 pages
Commands 2.1
No ratings yet
Commands 2.1
16 pages
ASA4
No ratings yet
ASA4
3 pages
CCNA Comand
No ratings yet
CCNA Comand
12 pages
Basic Cisco ASA Configuration Commands
No ratings yet
Basic Cisco ASA Configuration Commands
6 pages
CCNA Command Cheat Sheet
100% (1)
CCNA Command Cheat Sheet
33 pages
Configuring A Cisco Router Involves Setting Up Essential Features To Ensure Proper Network Functionality, Security, and Performance
No ratings yet
Configuring A Cisco Router Involves Setting Up Essential Features To Ensure Proper Network Functionality, Security, and Performance
6 pages
CCNA Cheat Sheet: Experts in Networking
No ratings yet
CCNA Cheat Sheet: Experts in Networking
8 pages
Parveez Network Engineer
No ratings yet
Parveez Network Engineer
5 pages
Tax Invoice for Cable Installation Services
No ratings yet
Tax Invoice for Cable Installation Services
2 pages
Quotation for Cable Installation Services
No ratings yet
Quotation for Cable Installation Services
2 pages
Cisco ASA Configuration Guide
No ratings yet
Cisco ASA Configuration Guide
14 pages
Exchange Server 2013 FAQs and Features
100% (1)
Exchange Server 2013 FAQs and Features
12 pages
H2+ Plus 1.8 June 2017
No ratings yet
H2+ Plus 1.8 June 2017
124 pages
Exchange Server 2013 FAQs and Features
100% (1)
Exchange Server 2013 FAQs and Features
12 pages
System Administration Manual
No ratings yet
System Administration Manual
260 pages
3gpp Ts 24.301 Version 13.8.0 Release 13 Nas Protocol For Eps
No ratings yet
3gpp Ts 24.301 Version 13.8.0 Release 13 Nas Protocol For Eps
444 pages
Configuring Cisco Stackwise Virtual
No ratings yet
Configuring Cisco Stackwise Virtual
22 pages
Randy Weaver Guide To Tactical Perimeter Defense 2007
No ratings yet
Randy Weaver Guide To Tactical Perimeter Defense 2007
592 pages
BSNL Certified NW
100% (1)
BSNL Certified NW
7 pages
Cambium Networks PMP 450 Subscriber Module Specification
No ratings yet
Cambium Networks PMP 450 Subscriber Module Specification
2 pages
Huawei EchoLife HG850a ONT Overview
No ratings yet
Huawei EchoLife HG850a ONT Overview
4 pages
OXE Ip Ports
No ratings yet
OXE Ip Ports
38 pages
PABX Presentation
100% (1)
PABX Presentation
30 pages
LAB5 Packet Tracer
No ratings yet
LAB5 Packet Tracer
2 pages
Priority Queuing: Presented By: Mohammad Aziz Mohiuddin MT19CPS008
No ratings yet
Priority Queuing: Presented By: Mohammad Aziz Mohiuddin MT19CPS008
18 pages
Roip (Radio Over Ip) Solution: Preliminary Product Overview
No ratings yet
Roip (Radio Over Ip) Solution: Preliminary Product Overview
60 pages
G-140W-C User Manual: Downloaded From Manuals Search Engine
No ratings yet
G-140W-C User Manual: Downloaded From Manuals Search Engine
10 pages
3GPP TS 36.213
No ratings yet
3GPP TS 36.213
125 pages
Data Communication Assignment Guidelines
No ratings yet
Data Communication Assignment Guidelines
2 pages
Soc - Net - Week 3
No ratings yet
Soc - Net - Week 3
3 pages
MPLS Lab Guide - Certcollection
No ratings yet
MPLS Lab Guide - Certcollection
146 pages
Guía de Balanceo de Carga PCC
No ratings yet
Guía de Balanceo de Carga PCC
2 pages
Wireless Networking
No ratings yet
Wireless Networking
15 pages
EIC Unit 1
No ratings yet
EIC Unit 1
125 pages
Metaheuristics for P2P VANET Optimization
No ratings yet
Metaheuristics for P2P VANET Optimization
126 pages
GSM - ARFCN in Malaysia
No ratings yet
GSM - ARFCN in Malaysia
17 pages
Midterm Exam Solutions for CS/ECE 438
No ratings yet
Midterm Exam Solutions for CS/ECE 438
10 pages
Wireless Radios and Contactors Price List
No ratings yet
Wireless Radios and Contactors Price List
1 page
Advantages of Client-Server Networks
No ratings yet
Advantages of Client-Server Networks
1 page
SP Routing Switching Specialist
No ratings yet
SP Routing Switching Specialist
5 pages
Cell VA4313G Frequency Setup Details
No ratings yet
Cell VA4313G Frequency Setup Details
9 pages
EDCH
No ratings yet
EDCH
34 pages
WLAN Security in Mobile Computing
No ratings yet
WLAN Security in Mobile Computing
7 pages
Vijaypal Yadav: Career Abstract
No ratings yet
Vijaypal Yadav: Career Abstract
4 pages
Telemetry
No ratings yet
Telemetry
34 pages

Cisco ASA Configuration Guide

Uploaded by

Cisco ASA Configuration Guide

Uploaded by

Host Name configuration

Cisco asa ( config-if) #hostname ASA-HYD

Wan interface configuration with static ip address

Cisco asa ( config-if) # int g1/0

Cisco asa ( config if ) # ip address [Link] [Link]

Cisco asa ( config if ) # name if WAN

Cisco asa ( config if ) # security-level 0

Cisco asa ( config if ) #no shut

Wan interface configuration with dhcp ( Broadband connection)

Cisco asa ( config if ) int g0/1

Cisco asa ( config if ) ip address dchp setroute

Cisco asa ( config if)#route outside [Link] [Link] [Link]

Cisco asa ( config if)#domain-name [Link]

Cisco asa ( config if)# crypto key generate rsa

Cisco asa ( config if)#username user1 password user1

Cisco asa ( config if)aaa authentication ssh console LOCAL

Cisco asa ( config if)# ssh [Link] [Link] LAN

Lan interface configuration

Cisco asa ( config-if) # int g0/0

Cisco asa ( config if ) # ip address [Link] [Link]

Cisco asa ( config if ) # name if LAN

Cisco asa ( config if ) # security-level 100

Cisco asa ( config if ) #no shut

Allowing ping ( Icmp) over wan interface

Need to change Default policy-map global_policy

Cisco asa ( config if )# policy-map global_policy

Cisco asa ( config if )#class inspection_default

Cisco asa ( config if )# inspect icmp

Cisco asa ( config if )#exit

Cisco asa ( config-if) # access-group access-policy in interface LAN

Blocking telnet and allowing all services for lan users

Cisco asa ( config-if) #access-list test permit ip any any

Cisco asa ( config-if) #access-group test in interface LAN

Cisco asa ( config-if) #wr

Cisco asa ( config-if) #exit

Cisco asa ( config-if) #object network shaik-pc

Cisco asa ( config-if) # host [Link]

Cisco asa (config-if) #exit

Creating Object by using ip range

Cisco asa (config-if) #object network test_range

Cisco asa (config-if) #range [Link] [Link]

Cisco asa (config-if) #exit

Creating object for Lan_network

Cisco asa (config-if) #object network Lan_Network

Cisco asa (config-if) #subnet [Link] [Link]

Cisco asa (config-if) #exit

Cisco asa (config-if) #object service RDP

Cisco asa (config-if) #service tcp destination eq 3389

Creating Object Groups

Ciscoasa(config)# object network public_pool

Ciscoasa(config-network-object)# range [Link] [Link]

Ciscoasa(config)#object network Lan_net

Ciscoasa(config-network-object)#subnet [Link] [Link]

Ciscoasa(config-network-object)#nat (LAN,WAN) dynamic public_pool

You might also like