Network Security

Can't get traffic in either direction

I've got a PIX firewall running 6.3(1) and I can't get any traffic to go from Outside to Inside and I can only get icmp traffic to go from Inside to Outside.I've tried to open it up completely so all traffic will flow (will the though to locking it d...

VPN connects but cannot navigate

I have a site to site VPN configured. It was working fine until today. Packet tracer says ALLOW all the way through flow creation. However, I cannot ping the devices (where I COULD yesterday). I'm at a loss. To me this indicates a change elsewhere. A...

How to upgrade ASA 8.2 config file to 8.6 (not the HW)

I have a customer with 2 running 5520's version 8.2(and configs several thousands of lines long)(we're not in a position to upgrade these)The customer has bought 2 new 5525-X with version 8.6(and this can't be downgraded to 8.2)How do I get the 8.2 c...

Best practices for firewall external interface addressing

Hi all,Can anyone explain what is more secure when addressing the outside interface of a firewall in a network diagram?1st option: ISP router: interface 1 (connected to the internet). ...

Migrating from FWSM to ASA

I'm currently using an FWSM and we are migrating to the ASA with 9.1 code. The nat is WAY different and I have some questions:1) To do a PAT to the outside, is it just object network TEST123 subnet x.x.x.0 255.255.255.0nat (inside,outside) dynamic <...

Connecting Two ASAs together via local interface

HiI have two cisco ASA routers & wish to connect them together so that traffic between is permitted with out going outside interface.Two asa are located at in ONE office and two have separate internet connection (ISP) configured. So here is what I di...

Resolved! Allow Specific Access Across Interfaces ASA 5510

Hi All,In my quest to learn Cisco IOS and devices, I need some help in traffic shaping, or access-lists, specifically allowing traffic between internal interfaces on the ASA.I have an ASA 5510:LAN/WAN/DMZ labled ports E0/0 (LAN), E0/1 (WAN), E0/2 (DM...

Error message in Context Directory Agent, mapping doesn't work correctly.

Hey guys!We've started using the AD Agent a year back or so, and now we've migrated to CDA but we're having some issues.We have 4 domain controllers and they are configured in CDA and show as OK, so all good there.But the ip to username mapping is no...

one-to-one NAT problems ASA5505

Hello everyoneI am having some problems trying to set up a simple one-to-one NAT between a public IP and a DMZ server. I've spent a number of hours staring at this problem and I'm hoping one of you can spot whatever I have missed.The ASA has 4 interf...

Resolved! ASA 5525-X multiple context-mode IPSEC tunnel

Hi,Currently I will have an ASA-5525-X in multiple context mode, since this will be at Remote Datacenter, I'm planing to access the solution through an IPSEC tunnel.....Remote-Access tunnel, not an L2L tunnel, I know this was not supported until vers...

Resolved! Required OID number to Monitoring Current host count

Hello all . I can get the current host count running below command . sh local-host connection Detected interface 'outside' as the Internet interface. Host limit applies to all other interfaces.Current host count: 10, towards licensed host limit of: 5...

ASA 5505 formatted disk - HELP

HiMy background is Wintel servers, but thought I should get to grips with some Cisco networking so brought a second hand ASA 5505 from eBay for home to play with. When it arrived the previous config had not been cleaned down and there was a password ...

Cisco ISE Anyconnect Profile editor

I want to wired user's authenticate from ISE device and to use authentication protocol EAP_FAST. In PC need to install Cisco Anyconnect Profile Editor.where and how i get anyconnect profile editor. Thanks.

ASA FAILOVER ACTIVE/ACTIVE AND ACTIVE/STANDBY

Hello, I have a dude.its posible configuring ospf on active/active failover mode, with multicontext?its posible configuring ospf on active/standby failover mode with multicontext?I read long time ago, it was not possible, i would like if in the new ...

ASA lab

dears,i need to know any real labs for the ASA firewall v2 to be able to pass 642-618 exam.and i need to practice on ASA and ASDM

Network Security

Forum Posts

Can't get traffic in either direction

VPN connects but cannot navigate

How to upgrade ASA 8.2 config file to 8.6 (not the HW)

Best practices for firewall external interface addressing

Migrating from FWSM to ASA

Connecting Two ASAs together via local interface

Resolved! Allow Specific Access Across Interfaces ASA 5510

Error message in Context Directory Agent, mapping doesn't work correctly.

one-to-one NAT problems ASA5505

Resolved! ASA 5525-X multiple context-mode IPSEC tunnel

Resolved! Required OID number to Monitoring Current host count

ASA 5505 formatted disk - HELP

Cisco ISE Anyconnect Profile editor

ASA FAILOVER ACTIVE/ACTIVE AND ACTIVE/STANDBY

ASA lab

We want to celebrate the October Spotlight Award winners!

Get ready! Great things are coming to Cisco Community

New name, same great product: Cisco Spaces

Deployment failures on SFR via FMC

It's possible to reload SNMP service on Cisco FTD 2120

RADIUS authc for SSH access to FTD, session terminates after login

SSH Access to FTD Inside Interface

Is there any simulator where I can test ips custom signatures?

Cisco Firepower 7.2 - Blocking Page with Malware & File policy

Support port mirroring on Cisco ASA 5515X Layer 3 port

Cisco FMC De-registration License

DCE2_EVENT__SMB_BAD_NEXT_COMMAND_OFFSET

High unmanaged disk usage on /ngfw/var on 7.0.4 FTD