Hi, We have currently a Checkpoint external firewall internet facing, behind we have Cisco ASA for VPN ( for external users for remote access) Now we have requirement to replace these two old firewalls with new Cisco ASA 5555-X firewall and merge bot...
OK, here is what I need to do, but I am not sure it can be done on an old PIX I have 2 servers: one needs to send FTP outbound to various addresses through the PIX, and the other needs to receive FTP transmissions from these same servers. In other w...
In the context of the Cisco ASA Firewall, what's the difference between a "CA Certificate" and an "Identity Certificate?"
I have a 5525-X running 9.4.2 in multi context mode. In a test context I am configuring PBR - the topology is as follows - The main routed path is learned via eBGP but I am selecting some Ingress traffic based on its source and pushing it to the...
Hi, We have brand new Cisco ASA 5525 + Firepower and from two days the CPU was 93-100% from process DATAPATH-0-1842. The version of the ASA software is 9.6(1) the ASDM Software is 7.6(1) and Firepower is 6.0.0. Can someone tell me way this process ...
I have a cisco ASA 5506-X and want to ping two host. One on the outside interface and one on the inside interface When i create an access list and appy to it the deny icmp action did not work. The running ping is still ok. When i stop the ping and re...
Does anyone know if I can retrieve the activation keys via an ASA serial numbers from cisco? Is there a web site tool for doing this? Thanks!
How can I monitor different users logged in to a single terminal server with different permissions?From what I know user agent 2.2 couldn't identify it, does anything change on 2.3? Thanks
Hello All: I have only limited ASDM access to a firewall that is managed by a 3rd party. I need to be able to temporarily "turn off" a VPN tunnel. I do not want to remove pertinent info re:the tunnel (such as the PSK); I just need to disable the tunn...
Hi allHow to achieve the goal of update the ASA version, in the setup of HA without an interrupt (example: upgrading one unit while another unit for production, once finish upgrade then switch role to upgrade the second unit, with no need a simultane...
I'm doing a proof of concept using Cisco's IOS CA Server to do our DMVPN authentication. When I use a stand alone CA Server this stuff works great but that doesn't have any "redundancy" in it were we to have a failure. So we want to use the subordina...
Hi All, First BEFORE any of you toss the hairpin examples at me - I've read all of them and they didn't help. They mainly concern hairpins between static gateway2gateway VPN's coming into an ASA. Here is my setup: Main ASA #1 that is setup to all...
Working on switching our ASA from AAA authentication to Certificate based authentication, which I do have working. My one question is we have multiple profiles how do I map a certificate to a certain profile for anyconnect? Would the below article be...
Is there an order in which you need perform cert importing when you are trying to complete the identity and CA cert? When i create and import the identity cert with trustpoint0 and then try importing the CA cert with the same trustpoint0 it removed t...
I'm having problem loading an image for the ASA 5506-X using rommon As per instructions I have done the following: rommon #1> interface gigabitethernet0/0 rommon #2> address 10.86.118.4 rommon #3> server 10.86.118.21 rommon #4> gateway 10.86.118.21...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 01-21-2026 03:34 PM | ||
| 01-21-2026 11:24 AM | ||
| 01-20-2026 01:44 PM | ||
| 12-31-2025 01:53 AM | ||
| 12-15-2025 09:32 PM |
| User | Count |
|---|---|
| 5 | |
| 4 | |
| 3 | |
| 2 | |
| 1 |
