Network Security

ASAv - OSPF adjacencies dropping, possibly CSCut01395 with different symptoms

Am just posting this here as I found some different symptoms that were fixed by the workaround for this bug in case anyone else is getting them. I suspect it''s the same bug as I think the debugs were complaining about Opaque LSAs I've seen this bug ...

Same IP NAT on two STATIC

I have a problem with a VPN redundancy link. In my infraestructure i have one dedicate link for a provider this link is filter by a FW-A on interface outside, we need a redundacy link this link are made by VPN on FWB that connect with FWA on inside i...

ASA Object Replacement

Hi! I would like to replace objects with an updated name for example: object a ===== object ab They function the same, only with a different name. Is there a way I can replace these without having to clear the objects and recopying them? Thank...

Resolved! Cisco Firepower Management Center on Standalone Server

Can you install a Cisco Firepower Management Center on a standalone server and not a VM? Here is a guide for the VM: http://www.cisco.com/c/en/us/td/docs/security/firepower/60/quick_start/management_center_virtual/FMCv-quick.html but couldn't find o...

Resolved! unable to reserve port 5060

Hi guys! Try to configure static NAT to port 5060 and get an error "unable to reserve port 5060" sip inspection disabled Cisco asa 5505

ASA NAT weirdness, connection reports wrong interface, return traffic not forwarded.

Running 9.2(2)4 We have some static nats, they're object nats. Just static nating ip's from inside to outside, and dmz to outside. It was working fine. Now it's not. We have some identity nat's before the static nats and some dynamic nats after. Here...

Resolved! ASA HA pair broadcasting duplicate MAC

We are using 2 ASA 5512 firewalls as HA pair. Both are uplinked to a switch owned and configured by the ISP in a datacenter. Some time ago one of the uplink ports went to err-disabled on the switch. The messages show that a duplicate MAC address is s...

BGP Multi-homing with single ISP on ASA (Active-Standby)

Hi I'm looking for some configuration guide/example document on how to configure BGP Multi-homing with single ISP on ASA which is acting in HA (Active-Standby). Can someone help with that Thanks in advance. - Padmanaban

Resolved! Confusion related to access-list and access-group

Hello there, I have cisco ASA 5515-x version 9.2.2 and ASDM version 7.2. The inside interface and IP is 192.168.1.1/24 and outside interface is x.x.x.x. I had opened certain ports like 1234,4567,8900 and so on. Today i needed to open 7000 port and ...

Security

Dear All, i have a question about Network i want to configure access layer switches (all port) with source(Host) dedicated IP address and Mac-address, for no one change and use other host ip, is it possible solution. thanksss

Resolved! wireless version of Cisco ASA5506-SEC-BUN-K9

good morning, 6) - the ASA5506-SEC-BUN-K9 is available with wireless feature ( 802.11n for ex. ) and wps feuature? which is the correct manufacture item part number?

ASA 5515-X complaining about link width of x2

Good afternoon, ***Edit: I've decided to just RMA it back to my reseller. I'm still interested to hear from anyone who might know what's going on. I just opened up a new 5515-X and the ASA is generating the following error on startup: The PCI devi...

Resolved! Switching from an old PIX to a new ASA (8.6), issues with DMZ

I'm working on replacing an old PIX-515E with a new ASA 5512. I'm having an issue figuring out what commands I need to open up traffic between the DMZ and the inside network for various applications. I'm sure it's just a simple command I'm missing,...

NAT solution

Hi, PFA, I need to add inside network 192.168.1.100-110(10 host) of ASA1 into DMZ(10.20.1.100) of ASA2 for application. is it possible to achieve it using NAT on ASA1 firewall. Please help me to write NAT configuration on firewall.

firesight simulation mode

is it possible to run a firesight sensor in "simulation" mode ? i.e can it show if a particular access control policy was enforced what would be allowed and what would be blocked ?

Network Security

Forum Posts

ASAv - OSPF adjacencies dropping, possibly CSCut01395 with different symptoms

Same IP NAT on two STATIC

ASA Object Replacement

Resolved! Cisco Firepower Management Center on Standalone Server

Resolved! unable to reserve port 5060

ASA NAT weirdness, connection reports wrong interface, return traffic not forwarded.

Resolved! ASA HA pair broadcasting duplicate MAC

BGP Multi-homing with single ISP on ASA (Active-Standby)

Resolved! Confusion related to access-list and access-group

Security

Resolved! wireless version of Cisco ASA5506-SEC-BUN-K9

ASA 5515-X complaining about link width of x2

Resolved! Switching from an old PIX to a new ASA (8.6), issues with DMZ

NAT solution

firesight simulation mode

Congratulations to all the winners of the April 2023 Spotlight Award!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

CyberOps Associate or Network Security?

FPR 1010 registration in progress and cannot cancel

Migration of Cisco configuration ASA 5515 to Meraki MX 85 Firewall

New: Cisco Secure Firewall 4200 Series appliance featuring the 7.4 OS

Failed to Generate Report on FMC

FTD With FDM Hardening Settings (SSH/Console Timeout, Banner)

TLS Version 1.1 Protocol Deprecated

GeoDB Updates file

Firepower 2120 lost configuration

Can I backup firepower license? (ASA 5516-X with firepower)