Posts Tagged: cisco

ASA, ASDM and HTTP API

Posted by & filed under Sécurité.

You can execute some commands or get files on ASA, FWSM and ASA-SM directly with HTTP. First you need to enable http server : https://supportforums.cisco.com/docs/DOC-15016 Then a command is send in the URL following this syntax: https://IP_ASA/admin/exec/CMD1/CMD2/CMD3 A simple example to show the arps: https://IP_ASA/admin/exec/show+arp+ A more complex example to get statistics for a contex: […]

Bootstrap ASA failover configuration

Posted by & filed under Sécurité.

Here the configuration I use for ASA failover 8.4+ based on my experience: On the primary: interface GigabitEthernet0/4 no shutdown failover failover lan unit primary failover lan interface FAILINK GigabitEthernet0/4 failover interface ip FAILINK 169.254.255.249 255.255.255.252 standby 169.254.255.250 failover key 222Th3Hak3Y222 failover link FAILINK GigabitEthernet0/4 prompt hostname state priority On the secondary: interface GigabitEthernet0/4 no […]

Activation du SSH et gestion des clefs sur ASA 8.x

Posted by & filed under Sécurité.

Devrant écrire une documentation rapide pour l’activation et la regénération de clefs pour un ASA en version 8.x, la voici: Configuration A partir de la console en mode configuration (conf t): ciscoasa(config)# enable password xxxxx Il est recommandé de toujours mettre le mot de passe enable ciscoasa(config)# username xxx password xxxx privilege 15 L’admin local […]