Network Security

Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

“Join

 
Labels

Forum Posts

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority.  The migration tool is available for download to migrate the configuration on the on-premi...

gopaks by Cisco Employee
  • 327 Views
  • 0 replies
  • 4 Helpful votes

Hi Guys I am after a bit of advice on Static NAT changes. I have just been asked to upgrade an old ASA in a company. T he old rules are (there are rules for translation both ways in the ASA, and a lot of them) (IPs have been changed)static (inside,ou...

hi,I am having trouble receiving flows from ASA. There is no flow information on the netflow collector (Scrutinizer) and the only information it shows about ASA is its availability. I am using below config: access-list global_NF extended permit ip an...

S891 by Level 2
  • 579 Views
  • 1 replies
  • 0 Helpful votes

I'm prepping to put a 5545-X in to replace a 5505. The 5505 was running pre-8.3, and our new one is running 9.1. I have been trying to do the most basic thing I thought possible (statically NAT'ing an internal server) and have had zero success. Can s...

iglablues by Level 1
  • 409 Views
  • 2 replies
  • 0 Helpful votes

I need to be able to ping a DMZ host from an INSIDE host and visa versa. I have tried configuring a static nat as follows static (INSIDE,DMZ) 192.168.10.0 192.168.10.0 netmask 255.255.255.0 I created an access-list called EXEMPT which permits any...

cro130271 by Level 1
  • 262 Views
  • 1 replies
  • 0 Helpful votes

Hi , I am fairly new to the Firepower services, I am currently ordering equipment for a client, namely 2x 5516-FPWR-Bun Firewalls, I just want to confirm 2 things, Do I need a FirePower IPS  Licence (L-ASA5515-TA) per device? and secondly do I only n...

Resolved! ACE ordering

Hi, I have a really long access list that has the following 2 entries, in this order, contained in it:show ip access-list blah<output omitted> 1010  deny ip any 192.168.1.128 0.0.0.63 log  (no matches)1200  permit tcp host 192.168.1.130 gt 1023 any e...

sue.nall by Level 1
  • 542 Views
  • 2 replies
  • 0 Helpful votes

Hi - I just can not find the following SKUs in CCW . Anyone can help with correct SKU and its replacement part numberDS-FIPS-KIT = REV-BOCisco4 labels and 0 shield per kit for ASA 5520ASA5585-X-FIPS-KITCisco8 labels and 1 shield per kit for ASA 5585

Hi all,First a little background on what I'm trying to do. I have a webserver in my DMZ running two FTP sites, one on port 21 and one on port 24. The ftp server running on port 21 is working fine, however I am having issues configuring my ASA5505 for...