Network Security

ASA double NAT

Hello, I have my double nat config as below on an ASA. object-group network inside-host network-object host 10.10.105.41 object network 1st-nat host 6.0.10.49 object network 2nd-nat host 206.125.46.2 nat (inside,outside) source static inside-host 1...

Firesight details required

Hi Team, We are in a middle of deployment of ASA with firepower services and need below documentation for points: Bandwidth consumption between ASA(SFR) and virtual FSMC.Log retention on FSMC virtual. Thanks in advance for any help.

Resolved! ASA 5510 inside hosts cannot connect

I have an ASA 5510 behind a Comcast wireless router. I have set the inside/outside interfaces and the ASA can ping public IPs. However, hosts connected to the inside interfaces do not receive any network info. On Windows 7 it just shows Unidentifie...

Resolved! Cisco ASA 5506x

Dear All, I have a new ASA 5506x, I need to configure site-to-site VPN, do I need to configure the Firepower services first(is it necessary?) in order to config VPN? Regards

FireSIGHT Dashboard

Hi, I have installed FireSIGHT virtual appliance and connect to 2 ASA-X devices. In the default FireSIGHT dashboard, I would see the summary of 1st device. How can I view the summary of the 2nd device? Thank you. CM

Resolved! How to configure Firepower

Hi Guys, I am new in Cisco Firewall and got confused on firepower services. I already configured configured ASA 5506-x but then I realized that I forget something and that is the Firepower. On the Configuration tab I didn't see the Firepower Tab. I ...

Cisco ASA ACL

Hi guys, hope someone can help. I have an ASA with multiple interface and I wish to add an ACL that will block every interface of accessing an IP address. Is it possible to do this as one command or would I need to add an ACL for each interface? Thi...

Cisco 5505 and Microsoft DirectAccess

Does anyone have a complete list of what parameters need to be enabled/set on a ASA 5505 so MS Direct Access is happy?I can't be the only one wanting to place a 5505 in front of the DA Server.

Resolved! issue Cisco asa5516 fpwr k8 Upgrade to k9 version

Hello Team, Some One kindly Provide help to my Cisco asa5516 fpwr k8 Upgrade to k9 version. I Took the 3des/aes activation key from Cisco website...that is via.... Cisco Product Registration->get other licenses->ips crypto other->Seurity products->...

Cisco ASA FireSight Management Center Logs overwriting issues

Hello team, I have installed Cisco ASA5545 with Firepower Services.Firepower is managed via FMC. My issues are my old logs in fmc are overwriting with news logs after 1 month.I need logs for atleast one year. HOw Can i accomplich that?

Double Colon as Default Gateway-ASA 5505

I am new to setting up an ASA 5505 and am getting a weird issue. I can connect remotely to the VPN and I am given an inside IP address from the address pool but my default gateway is always wrong and always has :: and then the default gateway. Theref...

ASA FirePOWER Threat Defense unified image (FTD) hardware requirements

Does the re-image from ASA IOS to the unified Threat Defense image require an SSD?

tracerotue works from VLAN X but not from VLAN Y.

Has anyone had experience where traceroute working from VLAN X but from Y? Traceroute works upto default gateway but at ASA, it does not work. policy-map global_policy class inspection_default inspect dns preset_dns_map inspect ftp inspect h323 ...

Firepower LIC please comment

Hello. we bought a firepower lice for 5506-x one year service. however, due to some project work we have to delay the deployment for 4 month. my question is if we never use our 1 year lice until next 6 month will we left 6 month to use. or once we re...

[solved] ASA5550: Deny IP spoof from

ASA 5550, software version 9.1(7) Error message: Deny IP spoof from 192.168.54.114 to 192.168.10.1 (on interface MGMT). interface GigabitEthernet0/1 nameif inside-srv security-level 100 ip address 192.168.10.1 255.255.255.0 interface GigabitEthernet...

Network Security

Forum Posts

ASA double NAT

Firesight details required

Resolved! ASA 5510 inside hosts cannot connect

Resolved! Cisco ASA 5506x

FireSIGHT Dashboard

Resolved! How to configure Firepower

Cisco ASA ACL

Cisco 5505 and Microsoft DirectAccess

Resolved! issue Cisco asa5516 fpwr k8 Upgrade to k9 version

Cisco ASA FireSight Management Center Logs overwriting issues

Double Colon as Default Gateway-ASA 5505

ASA FirePOWER Threat Defense unified image (FTD) hardware requirements

tracerotue works from VLAN X but not from VLAN Y.

Firepower LIC please comment

[solved] ASA5550: Deny IP spoof from

Get ready! Great things are coming to Cisco Community

New name, same great product: Cisco Spaces

Congratulations to the July 2022 Spotlight Award winners!

2960X weak diffie-hellman ciphers

Revert FTD HA pair to Snort 2

SNMP Monitoring of Cisco ASA Firewalls in HA

Firepower ASA 2110 completely broken

FirePower forward ssl decryption and inspection

Disabling TLS 1.1 on Windows Client

Cisco FTD Mail Events

CPU Memory Requirement for FMC 7.1.0

Redistribute default route in ospf in FTD

ISE-PIC and FMC