Network Security

Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.
Showing results for 
Search instead for 
Did you mean: 

Forum Posts

Resolved! DNS doctoring in 8.4

I currently have a NAT statement on my firewall for a public facing server which looks like this:nat (any,any) source static any any destination static server_ext_ip server_int_ipTypically I believe this would be better off as an object NAT but for n...

Matthew by Beginner
  • 3 replies
  • 0 Helpful votes

ASA-5505 NAT to a Range of ports

I have an ASA-5505 running 8.4  I have entered the following ... object service WLG-Rng-1 service udp source range 10000 11000Then this ..nat (inside,outside) source static VOIP-Sys-4 interface service WLG-Rng-1 WLG-Rng-1The nat command fails with "E...

CDA - Mappings

Hello,Does anyone knows how long are the IP-to-user mappings kept on the Cisco Context Directory Agent?Is there a setting that dictates for how long to keep these mappings if a user doesn't logoff? The scenario i have seen is that user lock their PCs...

lm20ele by Beginner
  • 5 replies
  • 0 Helpful votes

ASA Upgrade NAT rules

Hi All, Please correct me If I am wrong. I am upgrading from 8.0 to 8.4. One of my customer has nat rules in 8.0 as belowFor all the access lists for below they used permit ip any anynat (inside) 0 access-list xxxxxnat (outside) 0 access-list xxxx ou...

asa 5540 vpn ip addressing quesiton

i'd like to change the outside address that my 5540 listens on for our ipsec vpn clients, where exactly do i change this?  perhaps in nat rules (tcp 1000?) we have a /29 and i'd like to replace our pix that is serving as our vpn and would love to reu...

cisco asa high cpu - 90% -100%

Hi All,Recently observed constant high cpu in asa firewall with version 8.2.5 - 80% utilization. The process consuming more cpu is - tmatch compile thread around 60%. Do you recommend downgrade to 8.2.3 or is it an opened bug in the current version 8...

secureIT by Enthusiast
  • 5 replies
  • 0 Helpful votes

NAT error "Unable to reserve ports"

I have an ASA 5512 running asa915-smp-k8.bin I enter the following commands and get this error.FW-5512-ASA(config)# object network TCP_OWA_443FW-5512-ASA(config-network-object)# nat (inside,outside) static interface service tcp https httpsERROR: NAT ...

burleyman by Collaborator
  • 2 replies
  • 0 Helpful votes
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: