Initializing Cisco Secure Access


First configure basic through console.

1-Initial setting

Enter ‘setup’. Then configure basic parameters in table below

IP Address           192.168.3.20
SubnetMask        255.255.255.0
Gateway             192.168.3.1
Domain               packetdreamer.home
Namesserver      192.168.3.26
NTP                    192.168.255.1
Admin User         admin
Password            Abc456

2-Initial setting

3-Initial setting

System will reboot. After reboot, login with ‘admin’ and password=Abc456

4-Login

Now check status of application, whether it is running

6-show app acs

(Note that i have changed the vm name as ACS56 is confusing because this is version 5.2 :d). You can check version:

5-Version

Note that this ip will be configured by default on Gigabitethernet 0. Find this port carefully, this might be confusing as there is no proper label. For SNS-3415 refer to Cisco SNS-3415 Guide

Now open webpage https://192.168.3.20.  Provide username ‘acsadmin’ ( this is different from Cli admin login) and password ‘default’.

7-GUI-First-Login

For First time login, you will be prompted to change password.

8-GUI-Change-pass

After login, immediately it will ask for license (image not available). Provide base licence file, which you get from cisco, click ‘install’. Now you are on ACS GUI welcome page

9-Welcome-Page

To check your licence status:

10-Licence-Page

In next post, we will discuss how to add clients and users.

Cisco ASA on VMware & GNS 3 Integration


Top Cisco ASA 9.31 is installed on VMWare workstation 11.0.0 For building GNS3 Topolgy. host host1 host1symbol host1symbolik Right Click on Host & select configure. Name the Host host1name Select VMware network adapter and apply hostadapter VMWare setting Go to VMware workstation under VM tab select setting vmsetting Now under ‘Edit’ tab select Virtual Network Editor. vne Now Configure network adapter network Now, Check this VMware network adapter (VMnet3) is connected with which physical interface of GNS3. When i disconnected VMnet3 interface GigabitEthernet0/1 gone down. Means VMnet3 is mapped with Gi0/1 asavmware Interface gi0/1 gone down immediately asavmware2 Reconnect it. Now configure interface Gi0/1 on ASA Firewall

interface GigabitEthernet0/1
 nameif inside
 security-level 100
 ip address 10.3.254.3 255.255.255.0

Then configure on Router R1

interface FastEthernet0/0
 ip address 10.3.254.1 255.255.255.0
 duplex half
end

Now ping each other and verify that both are reachable