Network Security

Need to create a custom blacklist in Sourcefire Defense Center 3500

The company that I work for wants to import a customer list of IP address that they want black listed. This would change from month to month.It looks like I can create a customer blacklist in the Object Managment/Security Intelligence/. When I create...

Resolved! Alternatives to Reflexive or CBAC on 4500r+e

Hey All, Was going to deploy reflexive ACLs on some campus distribution switches last night and found out they aren't an option on 4500r+e switches or ISR 4321 routers. Anyone have any recommendations on alternative options? The reflexive ACLs woul...

Access to inside from dmz

We have the wireless network on the dmz of the firewall. I need to allow the wifi users to be able to connect to the inside subnet.dmz subnet: 192.168.3.0/24inside subnet: 192.168.1.0/24My packet tracer is failingasa# packet-tracer input dmz tcp 192....

FireSight in ASA

Hi Cisco community , I have a problem regarding to FireSight ,I have configured it ,but now I cant log out in order to enter ASA mode ,here is the output from it. Last login: Thu Oct 1 05:06:48 2015 from 192.168.0.52Copyright 2001-2013, Sourcefire, ...

Resolved! Upgrading DC from 5.3.02 to 5.4

Hi everyone, I need to upgrade the DC and sensors to 5.4.Can i upgrade directly from 5.3.02 to 5.4? RegardsMahesh

Backup Context Config in Solarwinds NCM

hi,we've been recently using solarwinds NCM to backup our configs.it seems the ASA admin context is only backed up.is there a config in ASA or setting in NCM to capture/backup the config of other contexts?also, can NCM capture the ASA password and VP...

cisco asa upgrade

Hi, We have a 5520 in production running 8.2, and want to replace it with 5525-X. To achieve minimal downtime, we cannot do the software upgrade on the 5520 to 9.2 and then copy the config across to the 5525-X.What we rather have to do is to load th...

CISCO ASA 5510

Hi All,I have connected to same ISP with two links from asa 5510 firewallI have got the 2, /29 subnet from the ISP (10.10.10.216 gateway 10.10.10.217) and (10.10.10.224 gateway is 10.10.10.225),Scenario is i have mapped 4 private ip address to 4 p...

4G lte module for ASA ?

Is there a 4G LTE module for ASA ?RegardsKjetil

SSL VPN AnyConnect Client Licensing

We are looking at upgrading an old ASA 5510 to a 5525-X. Up till now we have stuck with the old IPSec client, but since that is not going to be supported for Windows 10 going forward, we are looking at finally moving to SSLVPN via the AnyConnect clie...

SNMP on 5506 not working correctly

I am using an SNMP monitoring platform to monitor many cisco asa's. Since switching using the 5506 snmp interface graphs are not working correctly.When scanning and adding the interfaces, the 'in' traffic works as expected but the 'out' traffic shows...

ASAV ACL- acls not working as intended

I am using ASAV and have 2 interfaces namely (net26 and net27) apart from management interface.I configured ACL on net27 as:access-list cached ACL log flows: total 0, denied 0 (deny-flow-max 4096) alert-interval 300access-list net27_access...

ASA Clustering - Module Interfaces

I am in the process of replacing our old ASA firewall platforms with ASA5585X chassis'. We have two chassis' we want to configure into a cluster, each chassis has a ASA 5585-X SSP-20 module and a ASA 5585-X SFR SSP-20 module in them (identical pairs)...

Resolved! VPN for 9.2

Dears,I am planning to upgrade to 9.2 from a way 8.2.4>8.4.6>9.2, I have seen the memory requirements for the legacy ASA 5520 is 2 GB and rest all will be fine there is no need to upgrade the flash as it works with 512MB please correct if i m wrong, ...

4G lte module for ASA ?

Is there a 4G LTE module for ASA ?RegardsKjetil

Network Security

Forum Posts

Need to create a custom blacklist in Sourcefire Defense Center 3500

Resolved! Alternatives to Reflexive or CBAC on 4500r+e

Access to inside from dmz

FireSight in ASA

Resolved! Upgrading DC from 5.3.02 to 5.4

Backup Context Config in Solarwinds NCM

cisco asa upgrade

CISCO ASA 5510

4G lte module for ASA ?

SSL VPN AnyConnect Client Licensing

SNMP on 5506 not working correctly

ASAV ACL- acls not working as intended

ASA Clustering - Module Interfaces

Resolved! VPN for 9.2

4G lte module for ASA ?

FMC 7.4 and multi-instance FPR3130 chassis upgrades

Announcing the release of Firewall Migration Tool Version 7.7.10

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Firepower 2130 -how to resolve plugin 70658 SSH Server CBC Mode Cipher

Yubikey for authentication to protected applications on FTD

Cisco ASA set ACL of white list fail to function

CSF 1210 CE FTD Event viewer problem

cFMC and event logging - Cannot change timerange

Application PBR in FDM

SSH with X509v3 certificates