Network Security

Resolved! ASA Upgrade Path

Quick question. I'm updating some 5540's from 8.4(7) to 9.1(x) and looking at the upgrade path, their are updates that need to be completed for other versions that are later than 8.4(7), but 8.4(7) just looks like you can go straight to 9.1(x), which...

NAT migration from version 8.0 to 8.3

Hello I am looking at the NAT migration from version 8.0 to 8.3.... will the below be right ?? =====================VERSION 8.0 =====================global (outside) 1 interfacenat (v12_lvs) 1 192.135.226.100 255.255.255.255nat (v13_SN5) 1 access-lis...

Issue with DHCPD option 150

Hi, i have a very extrange issue, phone 7960 does not pickup option 150 ip from the firewall. logs from debug in the firewall DHCPD: adding option 150DHCPD: deleting option 150DHCPD: adding option 150DHCPD: deleting option 150DHCPD: adding option 1...

NATTING for 9.5

Dear I have migrated from 8.2 to 9.2 i have verified the configuration it has been migrated properly but I see lots of below commands not for only inside and DMZ but for others interfaces also, , object network obj_any subnet 0.0.0.0 0.0.0.0 ------...

VPN Remote & Site-to-Site

Dears, I have migrated the 8.2 configuration by the following way: copied the running config from 8.2 version by tftprenamed the copied file in (txt) and upload in new asa.I have reloaded the asa it migrated the configuration. I have 2 question bel...

Resolved! How to write the right ACL on ASA Firewall ?

Hello, After configuring the interfaces and the routes, I need to configure the ACLs to permit the PCs from one Lan to connect to PCs from the other Lan and to be able to ping each other. What should I write in the ACLs and on which interface(s) shou...

Resolved! Static NAT problem ASA 5525

Hi All, I have a problem with setting up static mapping on 5525 with the latest software, Configuration attached. Briefly, that has been implemented on ASA5525 object network sqldr host 192.168.10.205 access-list acl_out extended permit tcp any obje...

Cisco ASA 5505 9.24 Multiple public IPs to multiple internal servers

Hi! I'm really hoping someone might be able to help me here. What I'm trying to do seems like it should be really simple, but I've not had much luck. I recently switched from a Juniper SRX to a Cisco ASA and am having issues with trying to get th...

Resolved! TCP RESET-I Connection in ASA 5520

HI,there is a problem when a Biztalk server form the outside try to access the inside network through Cisco ASA 5520. It shows to me this Log on the Inside firewall: 6|Feb 23 2010|13:41:05|302014|Biztalk-TEST2|3060|idev4|1526|Teardown TCP connecti...

What is a primary difference between the web security features of the Cisco WSA+Firepower and the Cisco ASA NGFW?

Team, I want to know what Cisco FW having firepower module cant do that Cisco WSA can ? I mean is it still required to use WSA if we have NGFW with firepower module ? I think NGFW should be able to replace WSA/ironport and ESA . Thanks, Prashant

Resolved! (acl-drop) Flow is denied by configured rule

Hi, ACL is configured. Below is result of packet tracer packet-tracer input outside udp 172.24.93.24 1024 192.168.80.1 4223 Phase: 4Type: IP-OPTIONSSubtype:Result: ALLOWConfig:Additional Information: Phase: 5Type: INSPECTSubtype: np-inspectResult...

Cisco ASA for banking?

Hey, I would like to know how cisco asa can secure banking & financial organization networks from unauthorized network , for example: I am customer of one of bank and i use online banking for transactions (purchasing, transfer money, other) and h...

Resolved! How to connect an ASA Firewall to the internet?

Hello, In my topology (attached), I am simply trying to connect a PC to the internet through an ASA Firewall. Here is the ASA configuration: hostname Firewallenable password 8Ry2YjIyt7RRXU24 encryptedpasswd 2KFQnbNIdI.2KYOU encryptednames!interface ...

ASA Active lights in Active/Active mode

In our little lab I have been looking at Active/Active running for two ASA55xx-X, called FW01 and FW02. I seem to have some anomalous behaviour with the "Active" lights. I'm using asa942-11-smp-k8.bin. Active/Active requires multiple context mode so ...

Read-Only user in ASDM

Hi to all, I have one user with Read-Only privileges (level 5). When I try to access to the device via ASDM, the launcher opened the dashboard but when the ASDM is parsing the configuration, the application ask me the credentials one more time. If I ...

Network Security

Forum Posts

Resolved! ASA Upgrade Path

NAT migration from version 8.0 to 8.3

Issue with DHCPD option 150

NATTING for 9.5

VPN Remote & Site-to-Site

Resolved! How to write the right ACL on ASA Firewall ?

Resolved! Static NAT problem ASA 5525

Cisco ASA 5505 9.24 Multiple public IPs to multiple internal servers

Resolved! TCP RESET-I Connection in ASA 5520

What is a primary difference between the web security features of the Cisco WSA+Firepower and the Cisco ASA NGFW?

Resolved! (acl-drop) Flow is denied by configured rule

Cisco ASA for banking?

Resolved! How to connect an ASA Firewall to the internet?

ASA Active lights in Active/Active mode

Read-Only user in ASDM

Congratulations to the July 2023 Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

Why are NFS connections centralized in ASA/FTD cluster?

思科ASA防火墙型号ASA5555-X版本升级和ADSM的客户端管理软件升级版本可以确定一下吗，各位大佬

Cisco Secure Workload - Rehoming Agents from On-Prem to SaaS

Application Filtering for Office365

"Failed" successful CSM policy deployments to single ASA context

Is there a way to migrate from FMC to cdFMC?

switching a Firepower 1120 failover active/standby into multi context

FTD blocking connection to OpenDNS

How to delete persistent debug on FTD

Unable to SSH into virtual FMC