hi Cisco I have the following model: Local network (NET10, NET20) <=> Cisco 3850 (200) => ASA5525-x => WAN internet VLAN 10 192.168.10.0/24 VLAN 20 192.168.20.0/24 VLAN 200 connection between Coresw and ASA 5525-x Configured on 3850 core swicth inter...
Forum Posts
Hello I'm having problem when adding connection to AMP cloud from my FMC. When i read from cisco documents, it said that i should have option like: US, Europe and APJC, but on my FMC i only have 'Private Cloud' option. I believe this happened becau...
Resolved! Policy based routing
Following documentation (https://www.cisco.com/c/en/us/td/docs/security/asa/asa94/config-guides/cli/general/asa-94-general-config/route-policy-based.html) I'm trying to configure policy based routing on ASA 5506-X (9.8).The steps seem are simple:- de...
Dear all, Now,I am starting to learn Cisco firewall. Now,One interface to another sub interface cannot ping each other.Please tell me how can I solve my problem. Thank you so much
It is my understanding that you can configure up to 4 DHCP servers on an ASA. So if an ASA was configured this way, (with 4 relays configured on the same interface) does the firewall go through the list of the 4 relays in the config in order? If the ...
I have an ASA 5512 with 9.2 as its image. I am wondering, even from just interface to interface, are these NAT'd? I have my Inside interface LAN of 172.16.0.0/16 on port 1, Security Level of 100 and my DMZ interface LAN 10.10.10.0 /24 on port 2, ...
If 2 ASAs are setup in HA w/ stateful failover enabled and a failover occurs, do all https connections need to be re-established? The bulk of the connections would be via the outside interface facing servers, while a smaller set would be via OSPF le...
Hi, Newbie question. I have a 2960x with 3 VLANS (native VLAN is 1), already configured and working, in the sense that a PC on VLAN 1 cannot see a PC on VLAN 2 or 3. That is all I need. I do not need to do inter-VLAN routing. Nor do I want to use...
How to enable traceroute traffic flow for all directions & interfaces in ASA Version 9.1(7) ? The reason was traceroute frm PC meet with *** time-out when it reaches firewall.
Hi, I'm tryng to load asdm image on asa using tftp but it fails. I simply configured a port on asa with an ip and put my pc on the same subset. I can ssh to ASA from my PC but cant connect to tftp on my PC. I set wireshark but cant capture any tftp...
Hi All, We are getting TCP Reset-I and TCP Reset-O messages in the logs. We like to know which end is sending that and where the problem lies ? Any help would be much appreciated. Please find the attached logs. Thanks.
Good day everyone, I would like to ask if it is possible to configure site to site vpn on an active-standby firewall reaching 1 peer but using two different interfaces outside1(isp1) and outside2(isp2). Our goal is to have site to site vpn on both ...
I have a management network for most all of my gear which sits in the same network as the management interface on my asa 5516-X interface. It's basically a simply L3 vlan that all the management interfaces on servers, network gear, etc connect to. On...
Resolved! NAT translation for each IP
Hello , I have a Firewall 5545 and i would like to take output for each NAT translation (Nat Table). Can i have some help on this please ? I tried "show xlate" command but i have no output. Do you have any other idea ? Thanks , George
Hi All I have been given requirements by out it staff that they need to configure a server with a public IP address , This would not have a NAT , Can any one explain if its possible to protect this server behind our firewall ? As this will be on t...
