Network Security

Resolved! does i need to pay additional charge for using ASDM ?

recently, we want to buy 2 ASA for replacing the juniper ssg firewall. the ASDM is the UI to manage the ASA device. here is my question: 1. does i need to pay additional charge for using ASDM ? 2. if the ASDM is free, how can i get it? i tried to dow...

External NAT getting blocked

We have a user trying to access a local machine from the Internet and they are getting blocked by our ASA firewall. We can access the internal machine from inside the network. Our nat statements are getting blocked as follows: Commands object netwo...

Resolved! Hairpinning?

Hello, I have a Cisco ASA 5505 Firewall I need some help with. I have 2 cameras set up on my inside network that I need access to from my outside network. I setup the NAT rules from outside to inside along with the access list to allow traffic. Ever...

Resolved! 4110 FTD not registering with FMC

Hi all, I have configured a virtual FTD on a 4110 and trying to register the device to the FMC. The 4110 is running FXOS 1.1(4) and the FTD is running 6.0.1 image. I have upgraded the FMC to 6.0.1. I have been trying to register the FTD device to the...

Cisco ASA BVI

can some one explain me what is the advantage of BVI in ASA. I mean to say that why its impotent, Thanks, KD.

Resolved! Anyconnect migration from 5520 to new 5545-X

I am tasked with porting over Anyconnect Profiles from Production 5520 to new 5545-x replacement. I have two remote sites that also are Site to SIte IKE1 tunnels into this production 5520. Within Certificate Management I have three sections as follo...

Resolved! ASDM Strange Values under Standard ACL

I am defining standard ACL using ASDM and I see the values in user column even though I have not defined those values. What is the root cause? I just need to define source/destination IP and port number.

Using Blacklist/whitelist on IDS

Hello, I am currently planning on implementation of 4360 IDS system that will not be inline but monitoring the data VLAN on a switch. Someone asked me if I was going to create a blacklist and a whitelist for the IDS. Would that even be worth creating...

ASA Fail-over Pair SNMP Monitoring

I have setup 2 ASA5525-X with Firepower services in an active/standby failover pair, I have enabled SNMP V3 on firewalls and my NMS software detects both the firewalls but with the same host name for both devices. Intermittently my NMS application (...

Resolved! ASA 5505 - ACL Flow on Same Security VLANs

Hello, I am experiencing some odd behavior (or I'm missing something) with ACLs between 2 same-security-level VLANs. The firewall is an ASA 5505 running IOS 9.2(4). The VLANs simply separate users from servers and apply some access control. I have...

Cisco 8130 firepower High availability

Hi all, I have two cisco 8130 firepower NGIPS with six 10g ports (three 10 Gbps LR Fiber Network Modules). i have to implement HA in transparent in-line mode. Can i use 10g link as HA ? or i need to purchase 1G network module ..

Resolved! Installing a Cert on an ASA 5510 using Microsoft CA

We are having issues getting a cert on an ASA 5510 for out outside interface. All of our PCs have machine certs from an inhouse Microsoft CA. We are trying to put a cert from this CA on our ASA 5510 outside interface so that the end users do not get ...

Resolved! Failover Failed status

Hi Team, We have 2 ASA5515-x in failover Active/Standby mode. Recently, a failover has accured. I had this status : Failover On Failover unit SecondaryFailover LAN Interface: FOLINK GigabitEthernet0/2 (up)Unit Poll frequency 1 seconds, holdtime 15 se...

Assymetric routing on an ASA

We have kind of a strange situation going on. We have a web server hosted in a DMZ located off our DMZ interface on our ASA. This web server has two NICs one of which is in a management vlan connected directly to our core switch bypassing the ASA the...

SMTP Traffic need to allow from inhouse server

SMTP traffic need to hit translate in private IP address. =================================================================================================== InBisco-AHM-ASA5512-FW(config)# sh run natnat (DMZ-Apps,outside) source static DMZ-APP-SRV D...

Network Security

Forum Posts

Resolved! does i need to pay additional charge for using ASDM ?

External NAT getting blocked

Resolved! Hairpinning?

Resolved! 4110 FTD not registering with FMC

Cisco ASA BVI

Resolved! Anyconnect migration from 5520 to new 5545-X

Resolved! ASDM Strange Values under Standard ACL

Using Blacklist/whitelist on IDS

ASA Fail-over Pair SNMP Monitoring

Resolved! ASA 5505 - ACL Flow on Same Security VLANs

Cisco 8130 firepower High availability

Resolved! Installing a Cert on an ASA 5510 using Microsoft CA

Resolved! Failover Failed status

Assymetric routing on an ASA

SMTP Traffic need to allow from inhouse server

Get ready! Great things are coming to Cisco Community

How Cisco TAC is transforming documentation and self-service

Congratulations to the July 2022 Spotlight Award winners!

Change FMC managed FTD Access Control Policy assignment via CLI

How to install ISE application through vKVM after firmware v. 4.1

Cisco Firepower 1120 Upgrade to 7.2.x makes VLAN not work

CSM_MANAGEMENT_CRED_username-xxx password xxxx 15Error

FTP to ASA

Redistribute default route in ospf in FTD

ISE-PIC and FMC

Health Module of FTD disable FTDversion 6.6.1

IPSEC Tunnel between Cisco FTD and Umbrella SIG

ASA5516-x unable to set TLSv1.2