I have the following topology: mail server --- swcore --(inside) << >> ASA (outside) --- ISP border router should perform the following nat on the handle of a mail server 10.0.3.41 to 200.x.x.182 I have the following configuration on the ASA:...
Hello, We have several servers that we NAT to internal IPs on the inside interface. Normally we just setup DNS on the inside to point to the private IPs. But I have always been curious, how do you configure the ASA so a host on the inside can talk to...
Dear, I have Cisco ASA 5585 x, its working normally from two years ago, but before two month something strange start happened, its reloaded suddenly, and after week again happened and continue but in different times. what its the causes of make FW re...
Background:I work for a non-profit organization with 17 offices worldwide. We are a pure Cisco shop when it comes to networks.We are planning to upgrade (or replace) our firewalls which currently are Cisco ASAs which have been super stable. The manag...
Hi,We're starting with Prime Security Manager. The current installed version is 9.2.1.1 and we are about to upgrade to 9.2.1.2-52. Only a minor upgrade.The upgrade process and documentation is a little vague about the reboots required. Can anyone tel...
Is it possible to configure a conditional policy on ASA, for example - I have 3 interfaces Inside, Proxy and Outside. All http/https traffic from the inside users ig going to Proxy (and passed to Outside thereafter). The rule explicitly blocks direct...
Hi, i have a C1921 router and i would like to have ACL that dines some IPs and some MACs on internal interface. Is that possible to do? I know that you can have only 1 ACL per interface and that probably you can't combine MAC and Ip addresses in one ...
After a recent firewall cleanup we now are failing a PCI Scan from Trustwave. I have created a rule to allow their IP's to come in any port and I am still getting a "Network Service Stopped Responding" on there end while they are going to our Public ...
Does anyone know if Cisco has the PBR feature road mapped for future IOS releases or if they are building in new feature sets to load balance 2 different ISP connections much like F5. It seems more and more customers are asking for all in one functio...
I am trying to create a PCI zone inside a network. I am using a 1941 with security and ZFW to restrict traffic. PCI can go out to ASA and across to LAN. LAN can go to ASA but not to PCI, finally ASA can go back to both PCI and LAN to send natted traf...
I have two ISPs but I don't want to setup a backup route I want to route all my internet traffic out the secondary outside interface but without losing the first outside interface because I have all of my static IP addresses on the first outside inte...
Using ASA 5540 and we are currently at version 8.4(1) but we want to upgrade to version 9.1(5) so was just to ask if you can please confirm the recommended memory and flash required.And being a newbie on the ASA is this a easy enough process to do? A...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:
