Hi, We have a DMZ with 3 sub-networks, it is working. But we have a four sub-network (11.10.55.XXX) containing a host with nagios. (Sub network Level 100 / DMZ Level 50, outside Level 0) How to allow this network (11.10.55.XXX) to access the DM...
Forum Posts
Hi Guys, Can someone please explain to me what these commands mean on a Cisco ASA Firewall. Any help would be greatly appreciated. access-list sfr_redirect extended deny ip host 192.1.1.20 host 44.11.15.66 access-list sfr_redirect extended deny i...
Hi and thanks for your help. We have a pair of new Firepower 2130s with FTD 6.2.1 and a Firesight VMWare system going in. What is the best way to get the 2130's to 6.2.2? We already installed the Firesight Management Center with 6.2.2 and it would ...
Resolved! Licensing ASA Firepower Module
I need to license the Firepower module features on a 5508. I am going to manage this with the ASDM. In the license portal I have added the PAK for AMP, IPS, and URL and it shows as "Unfulfilled". I then choose it and click "Get License" and I am st...
Dear all, I have a problem with my asa. From domain controller server I see some access attempts. I don't know why I see the ip address of the inside interface of asa. in attachment the log of the server. 192.168.0.252 is the ip of the inside inter...
Please help (refer to attached diagram) as I need client 10.2.6.42 to telnet to 172.16.44.100 and the traffic will be NATed (which telnet into R2) to 172.26.32.5 (lookback interface). It is not working, not sure did I miss out any thing? Thanks in ...
Resolved! Asa 5505 no internet
I been trying to setup a new Cisco ASA 5505 for the past week and can't get the internal network to get out to the internet. I'm sure it's something very simple that I'm missing. I have configured everything that I have gathered online. Here is my sh...
I have been trying to establish a vpn ipsec between two ASAs, one of them with ISP that provides public ip, and the other with fixed IP. I did the configuration of each one of them and I can see that the VPN is established through the show crypto isa...
I have single 5508 running v.9.5. No router in front of the ASA. Failover is set up as shown in the configuration below. I have two questions, first, when primary ISP (Outside-TW) goes down and backup ISP (outside) becomes active, will it switch bac...
Hi Everyone Can i use ASA5525-FPWR-K9 without any IPS license and later on if i want to enable IPS then only i need purchase License or any hardware require?Is that will work for me ??? which software do i need to purchase to manage my firewall wi...
Hello All, Two production firewalls connected in Fail-over mode. We would like to change the IP on Inside interface. Will there be any impact to other configuration (e.g ACL, NAT statements) ? Also what precautions need to be taken care while impleme...
Resolved! How to manage ASA 5506x NGFW
Hi everyone, - This is the first time i have setup ASA 5506x FW. I had read some documents that i can connect my PC to interface G1/2 on FW and access https://192.168.1.1 to install ASDM. But after connect to G1/2 on FW, i had no ip address. - I have...
Trying to use an ASA5510 to relay DHCP requests to a windows DHCP server. Only windows clients can successfully lease addresses through the relay. Phones can not.DHCP clients and DHCP server both attached to networks directly connected to different...
A customer asked me to setup a server SFTP (using openSSH or FreeSSHd). This server passes through a firewall that accepts only port 22 and is connected to just one client. I know it's really weird but they don't want to open other ports on firewall....
Hi,I have configured tacacs in ASA 5520, it is working fine, I can login into ASA with tacacs credentials..authentication is successfull when tacacs server is unreachable Local authentication is also successfull.....But after that when Tacacs ser...
