Network Security

embryonic connection limit

Hi, Currently i have the below configuration access-list Outside extended permit object-group Obj-HTTPS-HTTP any object Obj-192.168.10.5 policy-map type inspect dns preset_dns_map parameters message-length maximum client auto message-length maximum ...

Can't ping public interface used by NAT

Our WAN IP address is xxx.xxx.210.131, I can ping this address from the outside fine. I have the following NAT setup that is working fine, it's nothing more than another public IP address from our block that translates to an internal web server. obj...

Resolved! Firepower 6.0

Dears, I have added 2 managed devices asa 5525X i have not configured any access control policies it's all on default, as per the attached i get a message out of date on 2 target devices i don't get any apply button highlighted , if this configuratio...

Resolved! FMC won't recognize update build 6.0.1-1214

Hello all, In light of advisory cisco-sa-20160330-fp (CVE-2016-1345), an attempt to upgrade FMC from build 6.0.1-1213 to build 6.0.1-1214 is not recognized. First attempt was to let FMC detect/download the update, but this resulted in the following...

how to exit sfr session in Firepower 6.0

Hello Guys, How to exit sfr session console in Firepower ? Impossible to exit with CTRL+SHIFT+6+X ? Second question : Can i have a same or multiple IP Adress on the Mgmt Interface ASA5515 ? I set an IP on the interface by SFR Module, but i w...

Microsoft Lync 2010 and ASA-5515-X

Where can I find a best practice document that discusses Microsoft Lync 2010 and ASA 5500-X configuration examples. I seem to be focusing in on related ports below. service-object object objs-443 service-object object objs-4443 ...

Resolved! ASA Upgrade Path

Quick question. I'm updating some 5540's from 8.4(7) to 9.1(x) and looking at the upgrade path, their are updates that need to be completed for other versions that are later than 8.4(7), but 8.4(7) just looks like you can go straight to 9.1(x), which...

NAT migration from version 8.0 to 8.3

Hello I am looking at the NAT migration from version 8.0 to 8.3.... will the below be right ?? =====================VERSION 8.0 =====================global (outside) 1 interfacenat (v12_lvs) 1 192.135.226.100 255.255.255.255nat (v13_SN5) 1 access-lis...

Issue with DHCPD option 150

Hi, i have a very extrange issue, phone 7960 does not pickup option 150 ip from the firewall. logs from debug in the firewall DHCPD: adding option 150DHCPD: deleting option 150DHCPD: adding option 150DHCPD: deleting option 150DHCPD: adding option 1...

NATTING for 9.5

Dear I have migrated from 8.2 to 9.2 i have verified the configuration it has been migrated properly but I see lots of below commands not for only inside and DMZ but for others interfaces also, , object network obj_any subnet 0.0.0.0 0.0.0.0 ------...

VPN Remote & Site-to-Site

Dears, I have migrated the 8.2 configuration by the following way: copied the running config from 8.2 version by tftprenamed the copied file in (txt) and upload in new asa.I have reloaded the asa it migrated the configuration. I have 2 question bel...

Resolved! How to write the right ACL on ASA Firewall ?

Hello, After configuring the interfaces and the routes, I need to configure the ACLs to permit the PCs from one Lan to connect to PCs from the other Lan and to be able to ping each other. What should I write in the ACLs and on which interface(s) shou...

Resolved! Static NAT problem ASA 5525

Hi All, I have a problem with setting up static mapping on 5525 with the latest software, Configuration attached. Briefly, that has been implemented on ASA5525 object network sqldr host 192.168.10.205 access-list acl_out extended permit tcp any obje...

Cisco ASA 5505 9.24 Multiple public IPs to multiple internal servers

Hi! I'm really hoping someone might be able to help me here. What I'm trying to do seems like it should be really simple, but I've not had much luck. I recently switched from a Juniper SRX to a Cisco ASA and am having issues with trying to get th...

Resolved! TCP RESET-I Connection in ASA 5520

HI,there is a problem when a Biztalk server form the outside try to access the inside network through Cisco ASA 5520. It shows to me this Log on the Inside firewall: 6|Feb 23 2010|13:41:05|302014|Biztalk-TEST2|3060|idev4|1526|Teardown TCP connecti...

Network Security

Forum Posts

embryonic connection limit

Can't ping public interface used by NAT

Resolved! Firepower 6.0

Resolved! FMC won't recognize update build 6.0.1-1214

how to exit sfr session in Firepower 6.0

Microsoft Lync 2010 and ASA-5515-X

Resolved! ASA Upgrade Path

NAT migration from version 8.0 to 8.3

Issue with DHCPD option 150

NATTING for 9.5

VPN Remote & Site-to-Site

Resolved! How to write the right ACL on ASA Firewall ?

Resolved! Static NAT problem ASA 5525

Cisco ASA 5505 9.24 Multiple public IPs to multiple internal servers

Resolved! TCP RESET-I Connection in ASA 5520

A new chapter of the Spotlight Award begins!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

13 minute timeout for Teamviewer connection

ACL rule base from FMC

Rollback FTD from cdFMC to on-prem FMC

FTP Connexion issue

How can FTD block file with Cloud lookup disposition: Unavailable?

Upgrading ASA 5506-x

ASA OS Upgrade planned: Problems with 2S2-tunnels expected

ASA: Tool that checks the configuration if compatible with new OS

Cisco FTD License

Ports on FMC 4700