I ran into a little mystery that I am having trouble solving. I have a router running Classic IOS 15.6(3)M image. It originates a FlexVPN to a VPN Concentrator. I have a CBAC FW policy like this: ip access-list extended filter-internet permit icmp...
Forum Posts
Upgrading a pair 5516s from 9.6(2) to 9.6(3) and noticed an issue. While everything works as expected while both are running 9.6(2), when I upgrade the standby unit to 9.6(3) I'm seeing the standby unit going into a failed state when I issue a "show...
Hi Guys, Can someone please tell me how to remove this command on an ASA5516 firewall? object network obj-10..0.107 host 10.0.0.107 Thanks, Lake
I am in the process of migrating to a new internet connection. Today, the ASA terminates the internet circuit in G0/0. The new internet connection terminates on a separate router.Interface G0/0description Internet Interfacenameif outsideip address x....
Hello, due to some certifications that I need to get for my current platform, they request to setup a firewall between the DMZ and the inside network. I recently installed brand new Cisco ASAs 5545-x (v9.7) with cluster licensing, so I was thinking o...
Dears, Please find the attached screenshot, IF no ACP matches then my default action is inline IPS then how come I can see the connection events with "Initial Passive Network Analysis Policy" actually I don't know what is Initial Passive Network A...
Hello, I have some questions regarding a couple events. The events in question are 776017 and 776018. When the message is Binding (ip) from peer (ip), would the binding ip be the destination ip and the peer ip would be the source ip?
Hi All, I'm looking to install a Cisco ASA 5506X with firepower services on our internet edge that is provisioned with a 100Mbps internet connection. We are looking to purchase the URL/AMP/IPS licenses and i'm wondering what sort of throughput I ...
Hi, Uplink connected in switch and ASA. I want to configure trunk on switch end and access port in ASA will it work. Regards Amol
Gents, I've a scenario where: 1) All my servers are directly connected to the Core switch. 2) I have only one external firewall that's sitting between the Core and Border Gateway router connected to the internet. Now client needs their servers ...
Good morning, I have a 100 Mbps WAN at my home that I have plugged into my ASA 5505 (ethernet 0/0). Right now I have two networks setup, one for my mother-in-law suite which has a homerun right to the ASA on interface 0/1. My desktop is plugged...
Resolved! ASA with domain users
Dears, I have implemented firepower with fire sight system, my problem is when a guest connect his laptop he get the IP address and he able to connect to the internet, I want the single sign on with source fire for domain users and if the user is n...
I am planning to purchase a Cisco ASA 5505. Can I connect my dsl modem to the ASA 5505? or would I need a router that sits between both of their device.
Resolved! Static nat PAT ASA
Dear all, I want to do a static nat pat to reach a server from outside. I need an help about port translation I have the interna ip address : 192.168.1.120 external ip address: 85.39.109.155 If I want to reach the port 80 of the server .120 but t...
Good day! Guys tell me, can anyone faced similar.In General there is a ASA 5510 (9.1). It stands on the edge of the network. And I have one server in a DMZ. On this server I need to watch the logs for incoming client connections to this server (i nee...
