Network Security

Resolved! Migrating ASA 5505 to 5506-X

Hi I am finding trouble migrating 5505 to 5506-X.I have pasted the config that I have changed.The only statement that doesn't go thru is :route outside 0.0.0.0 0.0.0.0 27.X.X.X8 1old config: ASA 8.4.2interface Ethernet0/0 switchport access vlan 2!int...

Resolved! Dynamic Policy PAT Issue

Guys, I'm having an issue with a configuration and need your help solving it, maybe even a whole new point of view. I need to create a VPN back to one data provider and basically I have to PAT a whole subnet behind a public ip different from the (AS...

ASA logs showing duplicate bytes in/bytes out

Hi, In our ArcSight ESM we are seeing the "bytes in" and "bytes out" field as the same number for ASA syslog events. From looking at the log explanation (www.cisco.com/c/en/us/td/docs/security/asa/syslogs/logmsgs2.html#pgfId-6941209) , I noticed t...

FireSight WhoIs and Context Explorer

Three issues that I am having with my FireSight Management console. 1) when I click in the context menu on an IP address to try and look up the WhoIs record, I get back an error saying that the Network is unreachable.2) The context explorer show No D...

Resolved! What version of Cisco ASA 5505 software do I use?

All, I have a few ASA 5505's that need the software upgraded. I am trying to plug holes and want to make sure I am using the best version of software. Currently I am running 'Cisco Adaptive Security Appliance Software Version 9.0(2) & 9.0(3). I ha...

How to find particular IP translated to which IP after NAT on ASA

Hello Experts/ Freinds, I have a simple question on how do we find particular IP got translated to which IP after NAT on ASA if we do subnet to subnet NAT ( like /24 subnet to /24 subnet translation). show xlate, show conn, show nat commands did not...

Resolved! Configuration after changing to multiple mode

Hi All, I need to know if the configuration of intrefaces (IP Address) in single mode will be erased after changing from this mode to multiple mode. Thanks in advance

Resolved! Static NAT & Routing

Hey all, I need to pick your brains on this one as I have run out of ideas and still cannot figure out why I am unable to reach new destinations. Just recently we added a new site into our WAN estate and connectivity is over SHDS to the other end...

NTP issues with Cisco ASA 5512-x

Folks Ive been having issues with the time sync on ASA5512-x. Currently the firewall is configured to sync its time to a server 2003 PC (not a domain controller), this pc has been configured to run NTP (add a LocalNTP DW_WORD key to registry), Loca...

sdee to syslog proxy

Here's a perl script that connects to an IPS device and then (when passed -l) logs to a file, somewhat simulating syslog. Without -l it will just log to screen, giving a nice pretty colour-coded output. It uses xsltproc and a stylesheet to translat...

HA on ASA 5525 and ASA5525-X

I have two firewall units ASA 5525 and ASA 5525-X with the same software version (ASA 9.15) and same licence Anyconnect premium. I want to setup these units as a HA pair. Cisco documentation says that the hardware units need to be indentical. Does an...

Unable to add second device - FireSIGHT Mnagament Center

Hi All, I tried to add a second asa5515x to the firesight management center but it indicates that is not allowed I have added the manager in cli command line : conf manager add à.@.@.@.@ cisco123 Is there any suggestion?

Secured Syslog in Cisco Security Managaer 4.6 SP1 and above.

Hi Experts,Good Day!I'm new into this CSM, does it support secured(encrypted) syslog messages?Thanks.

ASA for voice

Hi all, i have cisco ASA which cover CME inside the network, i config IPsec site-to-site VPN, NAT static, also some ACL. i've allow SIP TCP and UDP but it seem still cannot allow RTP/UDP from outside to inside, the clue was ip phone can call and ring...

Replacing ASA5520 w/8.2 with ASA5515X w/9.4

I'm new to Cisco ASAs, and have the task of replacing older 5520s with out-of-the-box 5515Xs. I'd like to do a direct swap-out replacement, using a minimally revised startup-config from the older ASA, but I'm guessing that there are differences betw...

Network Security

Forum Posts

Resolved! Migrating ASA 5505 to 5506-X

Resolved! Dynamic Policy PAT Issue

ASA logs showing duplicate bytes in/bytes out

FireSight WhoIs and Context Explorer

Resolved! What version of Cisco ASA 5505 software do I use?

How to find particular IP translated to which IP after NAT on ASA

Resolved! Configuration after changing to multiple mode

Resolved! Static NAT & Routing

NTP issues with Cisco ASA 5512-x

sdee to syslog proxy

HA on ASA 5525 and ASA5525-X

Unable to add second device - FireSIGHT Mnagament Center

Secured Syslog in Cisco Security Managaer 4.6 SP1 and above.

ASA for voice

Replacing ASA5520 w/8.2 with ASA5515X w/9.4

Partial Success and Optimize ACL Feature with Firewall Migration Tool

FMC/FTD remote access user not found using DUO SSO

CSCvr64208 - ASDM launcher v1.9 not applying proxy rules

How changes time zone cisco FTD firewalls UTC to IST

Cisco FTD local login syslog

ASA Failover: Only one device detects the other (different chassis)

FTD avpairs for CLI access

Firewall 4200 Series v7.4.2.1-30; vPC ACI port-channel suspended issue

Can you tell me what FMC's /var/run/rpc.statd.pid file is doing?

Unable to change the FTDv model using configure-model.sh