I want to run active active failover in transparent mode on asa 5545 with IPS. I want to know whether multicast traffic will be allowed to pass through the firewall in this scenario.
Hi,I have ASA 5510 firewall with security Plus bundle license is running in our production environment and i am now buying another box for Standby Firewall so as per my understanding the standby should be same as the active one firewall.Below are the...
We already have ISE IPN on this ASA for our VPN users, but now we want to migrate it to be our Internet firewall as well. The issue we have is that for the IPN to work, the 'inside' interface of the ASA and the 'outside' or 'untrusted' interface of...
Hello,I'm looking at upgrading my ASA to the newest version 9.0(3) . I am currently running on version 8.2(2) of the software. I know 8.3 introduced some major changes . I've been looking into the upgrade path and want to know if I can upgrade 8.2(2)...
I've discovered a bug in the newly added SGT option when running a packet trace using ASDM. When you do not want to add or use the SGT number (leaving it unchecked), the command sent to the ASA5555 includes invalid syntax:packet-tracer input outside ...
Hi,I have an ASA 5510 with software version 7.0(2) and would like to upgrade to a newer version as to enable Gigabit functionality on the interfaces. Is there an upgrade path that I must follow before moving to a newer version such as 8.3(2), or can ...
Hello,I have a customer who wish to replace an old 7200 router that supports the following services:- 5000 static nat with support to 15000 nat translations in the near future.- Around 125 Mbps of bandwidth throughput- 200 VRFsThis customer wants an ...
My 5505 is messed up. I went to rommon and did a erase all to kill all the possible file corruptions. Then im trying to boot from tftp now so I can get an image back on the flash....but...it looks like it hangs.... rommon #7> tftpROMMON Variable Sett...
I have an ASA 5505 setup as a router behind a Comcast cable modem/router. I have static IP's from Comcast. The plan is to use it for VPN access to my network from PC / linux clients. With some help it works, meaning I can do the normal stuff, eg.e-ma...
I have seen from my fail2ban logs that my servers (ssh in particular) get hammered daily on my dmz from external sources trying to brute force.I would like to block certain ranges of the highest offending ones. How can this be achieved on the 5505?E...
I have cisco ASA firewall, a Cisco router and a cachebox, the cisco router is connected to the inside interface of my ASA which connect directly to my inside network and my ASA is facing the WAN interface. the cache engine ip is 192.168.1.18 and my...
Dears Hiwe have a customer request ASA firewall for Data Center , Internet, and VOIP. for DC firewall : i was suggesting that ASA 5585-X next generation firewall. and i have suggested to include IPS SSP10 module with it. but when i was searching in ...
Dear Support, Currently, I have configured VPN site to site between two ASA ( Branch A and Branch B ). Normally, VPN site to site always permit full range of ip address in interesting traffic ( Access-control-List ). But for my scenario I want to al...
Dear All , Hope all are doing well.. I have Cisco ASA Firewall i need to open LAN to WAN two port 9005 and 9006 because i have one software that software not communicating with inside to outside their server for that reason i contact software support...
