Network Security

asa 5525 failover issue

HiI am using a pair of 5525's with ver 9.1 ios.The failover secondary unit goes into standby briefly then fails.any help would be appreciated.config:failoverfailover lan unit primaryfailover lan interface failover GigabitEthernet0/7failover link fail...

Resolved! ACL or Routing first

Hi everyone, I am trying to check routing for traffic flow from source to destination.When traffic is hitting the firewall say interface inside then i do sh run routei noticed firewall has no static route to destination subnet.So in this case will ...

Firesight update problem

Hi Im currently trying to update "Sourcefire Vulnerability and Fingerprint update version : VDB-246", but received error message: "unable to install VDB" SW version of Firesight is: 5.3.1.1 (build 37)current VDB version is: 234 Has anyone had this pr...

ASA 5505, 8.2, questions on NAT

Hi Everybody,I am trying to learn ASA ( totally new to this beast:)ASA 5505,8.2 is assumed in below discussion( 10.10.10.1)HOST--INSIDE--ASA-OUTSIDEDYNAMIC NAT:nat ( inside) 1 10.10.10.1 255.255.255.0global (outside) 1 199.199.199.1 - 199.199.199.254...

asa 9.1 cisco security advisories -which code??

HiThis advisory published on 2015 April 8:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150408-asasuggests 9.1(6.1) as fixed code.This advisory published on 2014 October 8 but last updated on 2015 July 9:http://tools...

Resolved! cisco asa overrun issue / Dt.6_7_2015

Hi,im experiencing an asa cpu utilization issue (80%) running with 8.0 version and process hitting on Dispatch unit. At the same time, found only overruns are increasing in the firewall interfaces. Like router or checkpoint, is there any way to incre...

ASA

I need to know what is the use of Security Plus License ?

Defense Centre Updates

Hi,I want to make sure that our new Defense Centre & ASAs with FirePOWER are being kept up-to-date. I don't want to do any auto-updates of software (these I would do manually), but I do want to make sure that everything else that can be, is kept up-t...

5505 DMZ Base License

So I am setting up a home network. I have a 5505 with a base license.I have inside, outside and dmz. For some retarded reason Cisco needs me to block incoming traffic to one of these interfaces.the only thing in the dmz is a reverse proxy. So can I d...

IPSec Research Project

I would like to ask if anyone can help with the project that I’m currently working on for my Network Security class. The project consist of giving recommendations and visual images of the IPSec protocol in detail that includes tunneling, architecture...

ASA 9.x NAT Configuration

Hello, I'm looking for a little help. I have a new ASA running version 9 and need to get my NAT statements back on. I see that there is quite a bit of difference between the way I know how to do NAT and the changes implemented in version 8.3. I'm a l...

Resolved! Download speed decreased after ASA installed.

Hi Guys, Our internet speed is 20 Mbs but after installed the ASA the download speed and sometimes upload decreased to 2 Mbs, what is the problem? and how can I solve it? Thanks Saeed

Resolved! Which IP address will be use for sending a test email in IPS manager express?

Hi all,I plan to use Email notification feature in IPS ME. There is a question confusing me. The test Email can work only half time, another time is failed. I want to figure out which IP address will be use for this SMTP login. Maybe I used a ACL to...

Resolved! Anyconnect client: No log in prompt

Over the last week, I've seen several clients (mostly windows 7 and Vista, not seen yet on Windows 8.x) having the same problem. When connecting to our VPN services on ASA 5510 running version asa915-k8.binClients are connecting with AnyConnect versi...

NAT from outside to two internal email servers

Hi,I have been told one cannot do this... NAT inbound from one public ip address to two separate internal email server addresses ss required for failover.This is specifically just for OWA/https and not SMTP. Is there a NAT solution that would be app...

Network Security

Forum Posts

asa 5525 failover issue

Resolved! ACL or Routing first

Firesight update problem

ASA 5505, 8.2, questions on NAT

asa 9.1 cisco security advisories -which code??

Resolved! cisco asa overrun issue / Dt.6_7_2015

ASA

Defense Centre Updates

5505 DMZ Base License

IPSec Research Project

ASA 9.x NAT Configuration

Resolved! Download speed decreased after ASA installed.

Resolved! Which IP address will be use for sending a test email in IPS manager express?

Resolved! Anyconnect client: No log in prompt

NAT from outside to two internal email servers

CSF 1210 CE FTD Event viewer problem

CSCwo71835 - The NAS-IP-Address attribute is missing

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Firepower 2130 -how to resolve plugin 70658 SSH Server CBC Mode Cipher

Yubikey for authentication to protected applications on FTD

SSH with X509v3 certificates

FPR‑4145 EOL/EOS ?

Firepower 4125 - how to resolve plugin 157288,

Cisco FMC QoS filtered by application

Disable checking of SIP traffic on FTD via FMC