Hello experts, I have a current requirement in that we are to deploy a pair of transparent firewall (active-standby). The active firewall sits between a core switch and an access switch. There is an etherchannel pair (gi0/0 and gi0/1) connecting from...
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(82) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,476) -
Cisco Bugs
(18) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(132) -
Cisco Firepower Device Manager (FDM)
(787) -
Cisco Firepower Management Center (FMC)
(2,850) -
Cisco Firepower Threat Defense (FTD)
(3,082) -
Cisco Press Cafe
(1) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(39) -
Cloud
(1) -
Cloud Security
(2) -
Community Bug or Issue
(1) -
Community Feedback Forum
(29) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(254) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(19) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,566) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(314) -
MPLS
(1) -
Multicloud Defense
(1) -
Network Management
(83) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,543) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,756) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(23) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(17) -
Other Switches
(10) -
Other Switching
(3) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(2) -
Security Management
(614) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(5) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(39) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous « Previous
- Next » Next »
Forum Posts
Hello, We had an issue the other day where replication through our ASA caused the ASA to hit is maximum throughput of 450mbps. We tried to set the replication software to use less bandwith but the software takes no notice.It uses port tcp 3650 and r...
I have a VPN tunnel going between a Cisco ASA 5520 and a Dell SonicWall on the other end, but the VPN tunnel won't stay up. The only way I can restablish any activity is to send a ping from the ASA to the SonicWall. But the SonicWall can't re-establi...
I have a ASA 5505 that I'm in the process of upgrading from 8.25 -> 8.46 -> 9.3 Following the upgrade instructions:configure terminalshow running-config boot system the problem is that this command isn't showing any results, like:router#router# c...
Source IPs:10.227.152.010.235.52.0Destination IPs:10.235.250.19710.235.250.26When the source IPs access these two destination IPs, the destinations have to be NATed to 212.65.63.69 by the ASA.How to achieve this?
HI Guys,I have attached my network design. we have 2 DC( Active/stnaby) and both having different subnets. I have concern about failover and interface configuration. as these are in the different subnet what should be the interface IP address? can y...
Resolved! Nat load balancing
Hi I have a cisco ASA firewall (9.1). I have 2 x FTP servers that sit in the DMZ 10.99.1.6010.99.1. 61 I want to NAT them to 193.164.55.20 So when ever an external connection trys to contact my FTP server it will p...
Hi, I have a question about ASA 5525-X. Can this ASA be used to dynamically PAT one IP subnet of private IP addresses (from inside port to outside port) and in the same time just to route other IP subnet of public IP addresses without PAT?I would hav...
Hi, Any one ran into this issueWe use websense for guest wifi but i dont see requests hitting websense serverconfig is below class-map type inspect match-any test-1 match protocol httppolicy-map type inspect Wifi-test class type inspect test-1 ins...
I am trying to configure an active/standby pair of ASA 5512's running version 8.6(1)2. The standby ASA will not sync with the active ASA. Is there a bug for this or is my configuration lacking?#show running-config failoverfailoverfailover lan unit pr...
Resolved! ASA cannot send email alerts
Hello, I configured ASA to send email notifications. My exchange server is at the same network as the inside interface of ASA but I do not receive any email alerts. I set it to receive informational email in order to receive something to see if it is...
ASA 5505 IOS ver 9.2.3I need to create a firewall rule that will allow internal services to be accessed externally, but using port forwarding. For example I'd like to enable access to our NAS via ftp external on port 1545 and then have the ASA forwar...
I normally configure the IPS module on a ASA no problem and its pretty standard setup but I came across a Cisco ASA 5515-X 9.1 code running two modules a Cisco IPS without a software image and a Cisco CX not configured with 9.1. Do I need to configur...
Resolved! Time limits for nodes
I have a few users that are only allowed 3 hours for access to the Internet. It's not my rule, management wants to limit contractors to access the Internet for 3 hours a day. I see where I can do a time rang ACL, like between 8am and 5pm Monday-Frida...
Hello all,I´m setting up a pretty basic lab on GNS3 and I´m getting a weird issue on my DMZ. I have a LAN interface and a DMZ interface, currently both with security-level 50 (lab purposes only), I think I have everything setup but host on both ends ...