Cisco asa failover configuration example

/
Below is example of a cisco asa failover configuration Primary…

Cisco ASA Rate Limit a VPN Tunnel

/
This post is in relation to rate limiting traffic which traverses…

Block HTTP requests with specific User-agent

/
Customer wants to block all HTTP requests going to 6.6.6.22 Only…

BigIP F5 LTM iRule URI based persistence

/
The client requirement is to enable URI based persistence for…

BigIP LTM iRule redirect if pool servers unavailable

/
Redirect request if servers not available [crayon-5b01b8dfd6859604268491/] …

BigIP F5 LTM iRule Setting HttpOnly flag on HTTP cookies

/
Not all cookies returned by the clients' application have HttpOnly…

BigIP F5 LTM iRule Set 'secure' flag on HTTP cookies

/
After a security scan, the client found out that some of the…

BigIP F5 LTM iRule Selective BackendSSL

/
[crayon-5b01b8dfd726c988108428/]

BigIP F5 LTM iRule SNAT based on source address

/
Below is an example where SNAT based on source address will be…

BigIP F5 LTM iRule Rewriting HTTP values

/
Simple URI rewrite [crayon-5b01b8dfd7860311888632/] …

BigIP F5 LTM iRule Redirect examples

/
Below are many different redirect examples [crayon-5b01b8dfd7b91380838721/] …

BigIP F5 LTM iRule Rate limiting based on uri

/
The below iRule is for Rate limiting based on uri. [crayo…

BigIP F5 LTM iRule Blocking requests based on country

/
You need to block all connections coming from specific countries…

BigIP F5 LTM iRule blocking HTTP traffic based on referer

/
Client wants to be able to block certain HTTP requests. Requests…

BigIP F5 LTM iRule Basic Authentication

/
A client wants to authenticate traffic before allowing it to…

BigIP F5 iRule with image

/
This article provides the necessary steps required to create…

BigIP F5 LTM iRule Selective SNAT

/
If you have a client that wants to use their external VIP internally…

BigIP F5 LTM Verifying that a Certificate and Key Match

/
Below is an example of how to verify that the Certificate and…

BigIP F5 LTM Auto Last Hop

/
F5 Big-IP Auto Last Hop Here is a quick note on a not very…

BigIP F5 LTM TCP Profile for High Bandwidth

/
The default TCP profiles are perfect in most cases such as websites.…

BigIP F5 LTM Monitor receive '200 OK' as the string

/
The standard send string most commonly used will look like this: [crayon-5b01b8dfdab5f090037936/] This…

write memory failures error opening disk0:/

/
If you get an error on an asa when trying to copy the running…

NAT Control

/
The NAT control Command [crayon-5b01b8dfdb4ab542085544/] The…

IP Fragmentation

/
Because the ASA is a fully stateful firewall with application…

Cisco ASA Disable Extended Authentication

/
Once you disable extended authentication, the VPN Clients do…

Configure connection limits

/
The Cisco ASA firewall offers excellent protection for Denial…

Client VPN tunnel all traffic

/
Cisco ASA Client VPN tunnel all the user traffic through the…

Block domain name with DNS Inspection

/
Let's assume that you want to block DNS queries for amazon.com…

VPN IPSec debug conditional on cisco ASA/IOS

/
Lets say you have 200 site to site IPsec VPNs and you need to…

Cisco ASA troubleshooting firewall traffic

/
Sometimes when troubleshooting firewall traffic, it is helpful…