So I just discovered that the Cisco ASA’s in their documentation refer to security levels and that higher security levels have access to lower security levels. A few months ago I was playing with a Cisco ASA and using the firewall functionality. By defining one firewall rule on the Cisco ASA it negates the security level functionality.
If you define one firewall rule, you will need to specify all allowed traffic through firewall rules.
SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:!MEDIUM:!LOW:!SSLv2:!EXPORTSSLProtocol -ALL +SSLv3 +TLSv1
tar cvfp – /directory/path [--exclude=/path/to/exclude] | 7za a -si -t7z -m0=lzma -mx=9 -mfb=64 -md=32m -ms=on filename.tar.7z
for i in * ; do mv "$i" "`echo $i | sed 's/old/new/g'`"; doneTaken from these instructions on how to setup the site to site VPN: https://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080950890.shtml#asa5510
All you need to do is remove the tunnel-group line
tunnel-group 172.16.1.1 type ipsec-l2l
Save changes to config:
wr mem
| S | M | T | W | T | F | S |
|---|---|---|---|---|---|---|
| « Sep | ||||||
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | 31 | ||||
 | blesseddlo on MySQL Quick Reference |
 | Marcelo Altmann on MySQL Quick Reference |
 | Adi Graham on Create bootable RHEL5 USB |
 | stevensugg on Enable RAID Leopard boot disk … |
 | zhongwu on DNS SRV records |
