Network Security

Resolved! Dynamic NAT configuration on Cisco ASA 5520

Dear Support, I want to setup a dynamic NAT on my firewall Cisco ASA 5520. I make the configuration below, but I cannot access to internet. Can you help me please. object network LTY_NAT subnet 192.168.176.0 255.255.248.0object network HQ_NAT subnet ...

Cisco SX20 "Cisco" phone me every 10min

Hello, we have more then 3 Cisco SX20 Telepresence Systems running,every 10min a unknown user names "cisco" phone us, only work is set "do not disturbed" mode, phone by all Codecs do anybody know what that is? and how to fix it? the caller is every a...

Can ISP's Auto failover be configured on ASA 5545-X with firepower services

Need help in configuring ISP auto failover between to ISP's in ASA 5545-X with firepower service

Cisco ASA Tracked Route is Removed Unnecessarily

Hi Everyone!I have a problem with our Cisco ASA in our company. The question is quite simple.We have our ASA configured in Active / Standby Failover with redundant links connected at two switches 3750 in HSRP for a better fault tolerance (This inform...

Questions regarding managing ASA 5525 & PRSM 9.3

Good day,My company recently purchased a pair of ASA 5525s, and we're managing them with PRSM 9.3. Unfortunately, we lost our security administrator, and while we understand the basics of managing the system, we were never "cross-trained" on this de...

The decapsulated inner packet doesn't match the negotiated policy in the SA

Hi,I am having a problem getting a SIP software to reach a PBX (ip office 500 if that matters) that is behind a ASA 5505. I have a working VPN connection that terminates at the ASA and can ping/telnet/netcat (UDP) the PBX no problem. When connectin...

IP adress control with DHCP

Hi I have a big issue right now. I am making changes to my company network. The system administrator has this control. Where he can create a rule in the firewall and allow people to go to the internet or limit the access using the ip address. We have...

8.2 -> 8.4 Question

Hello, I'm sure this will be a very easy question for most of you to answer. I have to implement NAT rules but I'm given the rules in the old format. I would like to translate the rule format into a 8.4 compatible ASA format. I believe this is a ...

ASA CX 5512 problem with https, with inside webmail

Hi, we have a problem, with ASA CX 5512, anyconnect users can use webmail normaly, but, outside users, who came from outside interface (without anyconnect) cannot get webmail page, only got error 403 with some message about ssl problem, when we turn ...

Pre-8.3 NAT to 8.3+ NAT configuration on ASA 5505

I have a pre-8.3 NAT question. How would this config look like in ASA 9.1(6)?name 192.168.100.0 lan description Internt Vlan1name 172.20.21.0 vpn description Vpnklienter vlan1global (outside) 1 interfacenat (inside) 0 access-list nonatnat (inside) 1 ...

ASA5505 - asa916-1-K8 : Deny TCP (no connection) from yy.yy.yy.80/52406 to xx.xx.xx.29/80 flags RST ACK on interface

Host yy.yy.yy.80 is a unique /24 range on a perimeter ASA (VPN/DHCP). Host xx.xx.xx.29 is a unique routable host behind the ASA5505 (logs below). The router in front of this ASA has one path to the ASA VPN, so I'm positive it is not a asymmetrical r...

Can ISP load balancing be configured on ASA 5545-X with firePower service

Need help in configure Load balancing on ASA 5545-X with Firepower service between 2 ISP ...

Cisco 5525-X Active/Active failover

We have purchased new cisco firewall 5525-X. As per Cisco we can configure multi context on firewall. But here we are using it as a standalone firewall. Can we configure firewall in ACTIVE/ACTIVE failover even if we configure it as a standalone firew...

RDP port forwarding not working on ASA 5505

hi everyone I have ASA 5505 ASDM version 6.4(9) ASA Version 8.4(4)I'm trying to open some ports in order to access our server RDP port 3389 but I'm not able to do it in this version I tried many methods below is a snapshot of my last configuration, a...

Resolved! ASA HTTP connection replication question

I'm assessing the potential service impact of failing over from one ASA to another with HTTP replication disabled.There is some concern that HTTP flows may be broken or disrupted when we failoverSurely HTTP is just an application running over TCP and...

Network Security

Forum Posts

Resolved! Dynamic NAT configuration on Cisco ASA 5520

Cisco SX20 "Cisco" phone me every 10min

Can ISP's Auto failover be configured on ASA 5545-X with firepower services

Cisco ASA Tracked Route is Removed Unnecessarily

Questions regarding managing ASA 5525 & PRSM 9.3

The decapsulated inner packet doesn't match the negotiated policy in the SA

IP adress control with DHCP

8.2 -> 8.4 Question

ASA CX 5512 problem with https, with inside webmail

Pre-8.3 NAT to 8.3+ NAT configuration on ASA 5505

ASA5505 - asa916-1-K8 : Deny TCP (no connection) from yy.yy.yy.80/52406 to xx.xx.xx.29/80 flags RST ACK on interface

Can ISP load balancing be configured on ASA 5545-X with firePower service

Cisco 5525-X Active/Active failover

RDP port forwarding not working on ASA 5505

Resolved! ASA HTTP connection replication question

Hearty congratulations to the December Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

Cisco FTD send RST when dropped by Snort / IPS

Firepower 7.2.1 - Issue with the FlexConfig Text object override

Re: FMC is disabled in System>Health>Monitor

Private VLAN's interaction with ESXi and firewall

Packets appearing in ASP DROP?

vFMC setting with bugsssss

FMCv upgrade path from v7.1.0

FMC new local admin cannot console or SSH

FMC API - can not associate a prefilter policy to an access policy

What is the result of placing, on ASA outside int, ACL...