Network Security

Dynamic translation not working in ASA 8.0(5)

I have a strange issue with my ASA which running with a code 8.0(5) I've a simple NAT statement. nat (monitoring-servers) 1 0.0.0.0 0.0.0.0 global (devices-cpe) 1 interface which doesn't take effect. NATing is not happening when traffic traverse f...

Resolved! Impact to decrease tcp idle connection timer on system

Hi, timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 As i understood, timeout conn is idle session timeout not a session lifetime. Am I correct? if so, what are the impacts on system to decrease idle session timeout? I heard that mo...

Resolved! High end Next generation Firewall having backlog analysis of 3 months minimum

Hi, I am bit confused in selecting a Firewall with feature like "High end, Next generation Firewall having back log analysis of 3 months minimum". Can anyone suggest a model of Cisco providing this feature? Arshi

SSH Access Lost

There was some penetration test happened and one machine has sent huge logs towards syslog server. Because of which whole bandwidth got choked and SSH access to all servers falling in that VLAN got lost, Eventually, we had to restart the restart the ...

Resolved! May I set load balancing on ASA 9.4?

My ASA 5512-X is ASA 9.4(2). Now I need create 7 VLANs and connect 3 ISP. VLAN2 (IP Phone) and vlan 3 (for PC) use ISP 1 VLAN4 and 5 (for PC) use ISP2 VLAN6,7,8 (for WiFi) use ISP3 and I need NAT to NAS, FTP,etc I find this page and something is sa...

ACS 5.5 + Radius Identity stores

Hi I have an ACS version 5.5 setup with Radius identity stores. Currently, my wireless users login to a captive portal that sends EAP_ASCII to my ACS which then sends the credentials over to the individual radius identity stores. I am attempting to ...

ASA Exclusive Configuration Change Access

I am working with a group that has multiple people managing a group of ASA's. Is there an ASA equivalent to the IOS configuration mode exclusive command? To make it so only one person at a time can be in configuration mode? Thanks! -John

Cisco VPN Client session disconnect

Hi guys Hope you're great, I got a question about something that is happening right now. I already configure some VPN accounts but I'm noticing that if i do nothing the session disconnected me in 1 minute and 37 seconds approximately. About the timeo...

Access rule

I am trying to sync up a back up device with another company for offsite backups. I'm working with an ASA 5505 and having trouble allowing access to an internal host on ports 22,80,443. My current setup has multiple IPs coming in on the outside inte...

Cisco ASA logging buffered spams terminal and console lines

I have several routers, switches and firewalls that send logs to a syslog server without interfering with the console line. I'm testing an ASA 5506 (running IOS 9.5.2) at a remote location that doesn't have a syslog server so I'm trying to use 'loggi...

Cisco ASA 5506 multiple outside IP's allow ping

Hi all, I have a /28 subnet and have configured a couple public IPs with NAT for various services. The outside interface has a main IP address configured and I create NAT and access-lists for other public IPs in my subnet. All is working in that resp...

BT Business Hub 5 - ASA5505 - Multiple External IP Configuration.

Hi, So I have a BT Business Hub 5 with an ASA5505 acting as a firewall. I have a block of 6 external IP addresses but with the current configuration we can only NAT one of them. Looking at the BT hub, it looks like you have to assign an external IP...

API to Patch Management

Please, What do Patch Management third party Platform integrate with Firepower IPS?, and How is the integration?

L2TP IPsec doesn,t work on ASA 5510

Hey, im nearly to gettin crazy.I'm trying to setup a L2TP VPN Connection on my ASA 5510 to connect with Android/Windows (Native Clients).I'm using the newest Releases:Cisco Adaptive Security Appliance Software Version 8.3(2) Device Manager Version 6....

Malware Cloud lookup privacy concern

Hello, Does the Firesight Manager send actual files to the malware lookup cloud for sand box scanning or only hashes. One of our management team raised a concern of sensitive files being sent to the cloud, perhaps if the cloud is hacked then such fi...

Network Security

Forum Posts

Dynamic translation not working in ASA 8.0(5)

Resolved! Impact to decrease tcp idle connection timer on system

Resolved! High end Next generation Firewall having backlog analysis of 3 months minimum

SSH Access Lost

Resolved! May I set load balancing on ASA 9.4?

ACS 5.5 + Radius Identity stores

ASA Exclusive Configuration Change Access

Cisco VPN Client session disconnect

Access rule

Cisco ASA logging buffered spams terminal and console lines

Cisco ASA 5506 multiple outside IP's allow ping

BT Business Hub 5 - ASA5505 - Multiple External IP Configuration.

API to Patch Management

L2TP IPsec doesn,t work on ASA 5510

Malware Cloud lookup privacy concern

about FTD-V

Unable to edit and save a text object

CSCwo71835 - The NAS-IP-Address attribute is missing

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Firepower 2130 -how to resolve plugin 70658 SSH Server CBC Mode Cipher

SSH with X509v3 certificates

FPR‑4145 EOL/EOS ?

Firepower 4125 - how to resolve plugin 157288,

Cisco FMC QoS filtered by application

Disable checking of SIP traffic on FTD via FMC