Network Security

Cisco CLI Analyser - connect to a device behind socks.

Is there support in Cisco CLI Analyser for devices which are behind a socks5 proxy? The proxy settings in the Settings Tab seems to be related to allowing Cisco CLI Analyser to access web related content. Also, I have a socksifier application install...

What is the difference between IPS, IDS and a firewall?

Sourcefire Time-Based URL Filtering

Is it possible to implement time based URL Filtering.I have a client who wants to disable Social Networking but only open it up during lunch time. ThksTerry

globally vs class-map inspection

Hi, What is the differences between enabling dns-guard globally or creating class-map inspection firewall# configure terminal firewall(config)# dns-guard firewall(config)# exit firewall# class-map inspection_default match default-inspection-traf...

Resolved! Site-to-Site VPN with Source NAT

Hi guys, I'm trying to use ASDM on ASA version 9.5(1) where I need to set up a site to site VPN with my local inside server to be NAT-ed to a different address in order to mitigate IP address Overlapping.I've seen a few examples using CLI, but I'm wo...

View Total Traffic On Sensor

Hi all, I will be installing 2 new sensors tomorrow for a client. However, i would like to be able to prove in a quick way that traffic is being looked at and would like to be able to show how much traffic that a sensor has processed. The sensor is a...

ASA FirePOWER - Inline Tap Mode

Hello, I would like to understand the configuration of Inline Tap Mode in ASA with FirePOWER. To operate in this mode, I need to configure the ASA policy-map to monitor-only or can keep inline and create an Intrusion-Policy on FMC with Drop When Inl...

FireSIGHT - Broken File Policy Configuration Screen

Hi everyone, I'm here as a last resort because I don't know how else to get this resolved. 3 days ago, I created a basic File Policy in Firesight. I shortly went back to it to rename it, erased the red title text for my policy and started to modif...

Resolved! Cisco ASA Failover after reload primary unit Failed

Hello. I have configure ASA Failover. failoverfailover lan unit secondaryfailover lan interface FAILOVER Port-channel2failover link FAILOVER Port-channel2failover interface ip FAILOVER 172.16.31.249 255.255.255.248 standby 172.16.31.250 ! interface G...

Resolved! unable to ping WAN IP

Hi, I've been tinkering with this issue for almost 1 month or two but still unsuccessful. This is actually my second post about our Cisco ASA 5520. In my Access Rules, I set it up as ip for the service to ensure ICMP is included but I can only ping l...

static NAT config from Destination to source

Hi Everyone, If traffic flow is from Source Interface is DMZ to Destination interface is inside we create ACL to allow the traffic. Source IP 192.168.50.x Destination IP is 10.50.50.x But i saw at our clients ASA that i need below NAT to make it wo...

Resolved! FirePOWER licenses for ASA5525X HA redundant pair

I have a pair of ASA5525Xs setup as HA redundant pair and I would like to deploy FirePOWER AMP, IPS and URL filtering licenses to these devices. My question is; do I need FirePOWER licenses for each device. Or, since the devices are setup in HA con...

ASA 5510 Problem with Compact Flash

Hello friends :) My company has got ASA 5510 without CF. I inserted a few CF but without any success.I tried to use CF from my ASA 5505, too. I tried to use format, and fsck, but everything was the same. Can I use the same image from ASA 5505 on AS...

Resolved! PIX 515 NAT config from outside to inside

Hi Everyone, I need to config ACL for traffic flow from outside to inside in PIX515. Need help on NAT config for this? Regards MAhesh

Same IP multiple hops

Hello Community I have an interesting case and after reading this articles and some others, I'm not sure how to fix it.... For some reason for some IPs behind our firewall the trace route show multiple times the IP of the outside interface and I dont...

Network Security

Forum Posts

Cisco CLI Analyser - connect to a device behind socks.

What is the difference between IPS, IDS and a firewall?

Sourcefire Time-Based URL Filtering

globally vs class-map inspection

Resolved! Site-to-Site VPN with Source NAT

View Total Traffic On Sensor

ASA FirePOWER - Inline Tap Mode

FireSIGHT - Broken File Policy Configuration Screen

Resolved! Cisco ASA Failover after reload primary unit Failed

Resolved! unable to ping WAN IP

static NAT config from Destination to source

Resolved! FirePOWER licenses for ASA5525X HA redundant pair

ASA 5510 Problem with Compact Flash

Resolved! PIX 515 NAT config from outside to inside

Same IP multiple hops

Hearty congratulations to the December Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

SSL VPN Authorization using Azure SAML

Change IP address of FMC HA standby node

FTD Multi-Instance Data and Data-Sharing Interface

Firepower integration with Openldap

Adding Clustered node in SNMP manager gives error duplicate name

Internal Server Error and Certificate key usage inadequate for attempt

Where to migrate SFR redirect rules on FTD appliance

ASA 9.6 Global Inspect Policy

How to deploy Cisco Firepower Management Center?

Cisco FTD send RST when dropped by Snort / IPS