Network Security

Resolved! Configuring NAT with IPv6 on ASA..???

Hello Anyone,I want to configuring my server that can be access from Outside with IPv6..Anyone have experience configuring NAT with IPv6 on ASA before???Please share to me, because i dont find any document about NAT with IPV6 on cisco.com and other f...

Cisco ASA and lots of connections per second - cpu usage

Hi!We have an asa5585-x which Works with no problems; but sometimes we can see huge amounts of connections more tan 10k-20k that triggers high cpu usage. Do you know how can we detect the source of this connections? Added youll see asdm with the conn...

Messed up Pix 515E

Hi!I'm a student trying to factory reset a few Pix 515Es when I ran into a problem I couldn't solve with Google. I can't flash any .bin file without getting an error saying "Could not read image header from flash". Prior to this it could not find a f...

Resolved! Change SSH Version

I have 2 core switches, that are using ssh v1.5 and need to change it to V2 so that a monitoring tool can login, if I change the version during office hours, will I need to regenerate RSA keys etc? or will this be done on the fly?

Resolved! nat conversion

HiIm busy working through converting an 8.2 config to the new nat procedures.can someone clarify if my interpretation of this nat is correct please. 8.2nat (dmz) 0 10.1.1.0 255.255.255.0 8.4 upwardsobject network OBJ-10.1.1.0-24 subnet 10.1.1.0 2...

Cisco ASA 5505 Reset-I Problem with TCP State Bypass

Hello, I have a Cisco ASA 5505 that functions as my primary firewall and a Mitel 5000 controller behind it. I have two external phone users that have been connecting through the firewall with no issues for six months until about two weeks ago. I am n...

Resolved! ASA cx not working with traffic redirection

Hi all, I am facing an issue with asa cx feature where asa is having all traffice set but there is no traffic coming to asa cx.traffic is only visible in case of monitor only mode.please tell me :1.How to redirect all traffic from asa to asa cx.2.How...

Resolved! Traffic not passing to one NAT address, works fine to different address

I am completely stumped. We are replacing an old PIX running 6.3(4) with an ASA running 9.2(4). After migrating the config and swapping it out, some of the devices cannot pass traffic. Here is a sanitized version of the relevant config. Any idea why ...

Resolved! NAT conversion from ASA ver8.0 to 8.4(2)

HiI have an ASA version 8.0 which am going to upgrade to V 8.4. I believe the NAT statements are different, can someone assist with what the NAT conversion code for the below ver8 NATs to 8.4 will be:global (MS-CLOUD) 20 10.10.10.1-10.10.10.63 netmas...

configuring cisco asa 5510 to enable traffic between interfaces

this is my currect interface configinterface Ethernet0/0 nameif internal security-level 100 ip address 192.168.40.1 255.255.255.252!interface Ethernet0/1 shutdown nameif outside security-level 0 ip address 81.6.63.114 255.255.255.248!interface Ethern...

How can I create the ability to block an IP based on traffic to a specific IP or port

Is it possible to have an unused IP address on my ASA, which when it receives traffic flags the source as a bad actor for the whole device. It would work essentially like a spam trap for an email server, where anyone sending to that address clearly i...

CSM 4.3 export ASA rulebase to HTML / CSV

Hi.Is there a way to export the rulebase to csv/html using CSM 4.3? I know it can be done through ASDM but looking at the rules in ASDM, they are flattened out into single object source, destination & port per line. Is it possible to keep it in the...

Cisco PIX 515E Static Translation Question

I have the following static entries in my firewall. One works and the other doesn't. I just added the second entry below today and I see it build in my logs but no connection is established to the remote end. static (inside,ICS) 192.168.50.97 192.1...

Resolved! Two VPN Site-to-Site Tunnels, One as a Backup to the Other

I have an ASA 5510 configured with two site-to-site tunnels: one to a main facility and the other as an alternate path to a DR site. What's the best mechanism for having one tunnel be the primary path and the second being a failover/redundant path?...

ASDM not working with Java 8 with window 7

The corporation I work for just rolled out Java 8 and since then the version of ASDM I was running (733 up to 751) is not launching with Java 8.Any suggestions?

Network Security

Forum Posts

Resolved! Configuring NAT with IPv6 on ASA..???

Cisco ASA and lots of connections per second - cpu usage

Messed up Pix 515E

Resolved! Change SSH Version

Resolved! nat conversion

Cisco ASA 5505 Reset-I Problem with TCP State Bypass

Resolved! ASA cx not working with traffic redirection

Resolved! Traffic not passing to one NAT address, works fine to different address

Resolved! NAT conversion from ASA ver8.0 to 8.4(2)

configuring cisco asa 5510 to enable traffic between interfaces

How can I create the ability to block an IP based on traffic to a specific IP or port

CSM 4.3 export ASA rulebase to HTML / CSV

Cisco PIX 515E Static Translation Question

Resolved! Two VPN Site-to-Site Tunnels, One as a Backup to the Other

ASDM not working with Java 8 with window 7

ACME on ASA

Reuse Object Group in a single ACL line

CSCwm49782 - enhance sma 2nd cruz heartbeat logging

Security Intelligence feed/list change alerts

FMC 7.4 and multi-instance FPR3130 chassis upgrades

Snort3 rate filter

PBR with AnyConnect

FMC: Automatic renew certificates?

Finding the forgotten IP address of a Cisco PIX 506E

Nexus using sha256 authentication for NTP