Quick basic configuration of a Cisco ASA firewall for custom IP address and ASDM access

March 22, 2012 1 Comment

Here are a few quick commands to wipe a Cisco ASA series firewall, resetting it to factory defaults, and then enabling the device for an IP address on your own subnet rather than the default 192.168.1.0/24, as well as setting up ASDM and telnet and ssh access. This gives you a very basic configuration from which you can access the device. First connect to the device via the console port and run the following commands to wipe the device:

ciscoasa> enable

ciscoasa# conf t

ciscoasa(config)# configure factory-default

Once the device has loaded the default configuration, disable DHCP on the inside interface to prevent the device dishing out IP addresses. This may not be relevant in your environment but in ours DHCP is provided elsewhere:

ciscoasa(config)# no dhcpd enable inside

ciscoasa(config)# no dhcpd address 192.168.1.5-192.168.1.254 inside

Set the ip address for the inside LAN on interface vlan1 if this is the vlan you are using for the inside network:

ciscoasa(config)# int vlan1

ciscoasa(config-if)# ip address 10.0.0.1 255.255.255.0

ciscoasa(config-if)# exit

Enable the http server, and allow access from the inside subnet

ciscoasa(config)# http server enable

ciscoasa(config)# http 10.0.0.0 255.255.255.0 inside

Configure the local AAA authentication database and create a new user account to log in to ASDM with:

ciscoasa(config)# aaa authentication http console LOCAL

ciscoasa(config)# username oasysadmin password Pa55word

Enable telnet and/or ssh on the inside interface if required:

ciscoasa(config)# telnet 10.0.0.0 255.255.255.0 inside

ciscoasa(config)# ssh 10.0.0.0 255.255.255.0 inside

ciscoasa(config)# aaa authentication ssh console LOCAL

Set the enable password

ciscoasa(config)# enable password Pa55word

Save the configuration and reload

ciscoasa(config)# write mem

ciscoasa(config)# exit

ciscoasa# reload

Filed under Cisco Tagged with , , , , , ,

Citrix Error: Event ID 1004 “faulting application XTE.exe, version 4.5.0.64631”

March 20, 2012 Leave a comment

The other day I installed the Citrix Hotfix Rollup PSE450W2K3R07 on one of our Citrix servers. Shortly after this I was alerted to an issue where sessions were disconnected, so I checked the event log and noticed the following error:

Event ID: 1004, Source: Application Error

Reporting queued error: faulting application XTE.exe, version 4.5.0.64631, faulting module ntdll.dll, version 5.2.3790.4937, fault address 0x0004cd12

Event ID 1004 faulting application XTE.exe

On investigation there is an additional hotfix (PSE450R07W2K3027) available on the Citrix website to address this specific issue.

References:

http://support.citrix.com/article/CTX131874

http://forums.citrix.com/thread.jspa?messageID=1611389

Filed under Citrix Tagged with , , , , ,

Prevent users from connecting to a Citrix server while performing maintenance

March 15, 2012 Leave a comment

Here is a command for preventing users from connecting to a Citrix server while you are performing maintenance or patching. From the command prompt type:

change logon /disable

When you have finished your maintenance, simply run:

change logon /enable

Be aware that this will also stop you from connecting to the server via RDP if you end your session. Rebooting the server resets this command. This command also works for Terminal Server/Remote Desktop Services.

Filed under Citrix Tagged with , ,

Older posts