Network Security

Resolved! Port Forwarding Outside Interface

Wanted to make sure I had my syntax right for this. I'm trying to forward a port say 8030 from my outside interface to a host on the inside on 3389. Here's what I have so far object network 1.1.1.1 host 1.1.1.1 nat (inside,outside) static interfa...

Resolved! ASA Level 5 Log Alert

Does anyone know why this log message is generated: Error Message %ASA-5-502103: User priv level changed: Uname: user From: privilege_level To: privilege_level In my case the Uname: enable_1 is not a recognized username local to the FW, is this g...

Resolved! Policy Based Routing on ASA - if the DSCP is set to 46 then set next-hop

I have a requirement to do a PBR on a firewall if the traffic has the dcsp set to 46. I can have accomplished this on a Switch/router, just need to determine if I can do this on a Cisco ASA 5506. Has anyone attempted or accomplished this. Here is ...

packet capture

Hi,Firepower 8000 series sensor deployed inline mode and i want capture spesific ip address from sensor, i got answer from support they say it is not possible.for example ip address: 1.1.1.1src: 1.1.1.1 dst any and connection logging enabled.traffic ...

Reimaging a Sourcefire/FirePOWER 8350 Issue

I am trying to reimage an 8350 appliance. I have been following the guide located here: http://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/118308-technote-firesight-00.html. I can get to the point where the ISO downloads...

ACL - Traceroute

Wouldnt this ACL bring down the network? Since internal-out ACL has deny any any at the end implicitly, this will allow only icmp going out? ciscoasa#config t ciscoasa(config)#access-list internal-out permit icmp any any echo-reply ciscoasa(config)...

Design guidance for active/active firewall WAN edge across two sites

Is there any design guidance for building an Active/Active firewall layer for a WAN edge that spans two sites? As I see it I can have a single ASA per site in A/A access the two sites, or a cluster. What are the pros/cons and dependencies for these?

Resolved! Firewall ASA 5516-X - Security monthly review

Hello Dear Support Community Do you know if Cisco has a tool where i can get a vulnerability report for a specific ASA FW Version? Example ASA 5516-X 9.5(2) Or can you give me an advise to check the vulnerabilities for a specific version?

cisco 7010 firepower chassis with 6.1.0 sourcefire

I am getting the error: System processes are starting, please wait when I log into the management IP address. I cannot log in to the gui.

Download/reset default IOS on 5512-x without smartnet contract?

Hi guys - we have a client that purchased a 5512-x years ago. They have let smartnet expire and now their device will not boot. I'm not sure if it's hardware related or not but it will not load the image. I'm trying to reload a new default image o...

Issue with Telnet Session across ASA firewall (ASA Conn flags )

Hello, I have an issue with a Connection am trying to set up i have an application that is connecting to a remote server via Telnet but (UNIX server) but every time a Syn /Ack is established it cuts the connection and resets the TCP connection. On t...

support community question

Demo discussion

Syslog on Managment-Interface of ASA

Hello, I want to enable syslog logging on my ASA, the syslog server is connected into my ASA mgmt-int. I tried a lot, the asa is not sending any logs into the syslog-server. Can you see my config and comment, where the issue could be ? is t...

FMC signature update

Hello,I got some questions from customer about FMC signature update(local malware analysis and file preclassification signature updates) . What I could find in document about this signature update is that, by default, automatic update is enable and F...

Policy PAT

Hi, If we upgrade the ASA 8.2(5) to ASA 8.4(5), will the policy PAT gets auto converted or do we need to do manually after upgradition. Also what is the config that will not be auto converted after upgraded to ASA8.4(5) from ASA 8.2(5) Config: ====...

Network Security

Forum Posts

Resolved! Port Forwarding Outside Interface

Resolved! ASA Level 5 Log Alert

Resolved! Policy Based Routing on ASA - if the DSCP is set to 46 then set next-hop

packet capture

Reimaging a Sourcefire/FirePOWER 8350 Issue

ACL - Traceroute

Design guidance for active/active firewall WAN edge across two sites

Resolved! Firewall ASA 5516-X - Security monthly review

cisco 7010 firepower chassis with 6.1.0 sourcefire

Download/reset default IOS on 5512-x without smartnet contract?

Issue with Telnet Session across ASA firewall (ASA Conn flags )

support community question

Syslog on Managment-Interface of ASA

FMC signature update

Policy PAT

pxGrid session subscription missing radius accounting session Id

Model Migration - 4110 Native to 4225 Instance S2S VPN Configs

ASA upgrade procedure on Hyper-V

Announcing the release of Firewall Migration Tool Version 7.7.10

CSCvx25052 - DOC: FTD Syslog messages 43000x missing from FMC

Recovery of "admin" password in CIsco ASAv runnin on AWS

Cisco FMC Access control policy under default

AnyConnect MAC OSX exclude/include DNS not working

FTD Migration Question

License Help For ASA5510