Network Security

Anyconnect essentials compatibility

Hi to all,somebody knows if the Cisco ASA version 8.0.5 is compatible with the Cisco Anyconnect Essentials license??? We are trying to get this functionality, we purchase the Anyconnect essentials license and 50 users license, but we only can see 2 W...

ASA 5510 Dual internet connections getting Deny Reverse Path Check

I have an ASA 5510 with 2 "outside" interfaces connected.(all addresses are fake to protect the innocent.)one with verizon: 63.1.1.2 / 28 (Main internet connection, VPN Tunnels attached) interface is named "fiber"and one with comcast: 50.1.1.5 / 28 ...

IPS and CSC

I have two firewall ASA 5540 .Each Firewall contain one security module.IPS and CBS. Firewall support active active cluster.can i use both modules at a time

Cisco FWSM in 6500 VSS environment

Hello,I have a production environment working with 2 Cisco 6500 series configured as VSS. We have One supervisor and multiple SVI interfaces on MSFC card. Each of the two 6500 has one FWSM module mount but not configured. I have 45 SVI interfaces (V...

ASA 5505 Download speed throughput very slow with new modem

I received a new modem today to upgrade my speeds with my ISP. The modem is a Hitron CGNDM. Once I had this new modem plugged in I had the ISP put the modem in bridge-mode disabling the NATing/any fancy functionality and performed a speed test. I was...

TCP timestamps security vulnerabilities

On my ASA 5520 with version 9.1(2)8 I am getting a warning about tcp timestamps when running the external security scan. " It was detected that the host implements RFC1323"Solution = Disable TCP timestamps Please correct me if I am wrong, from what I...

ASA 5520 speed issue

HiWe have a Cisco ASA 5520 that we've just connected up to a 100 Meg internet connection. Speedtests can only get to 10 Meg, but if I bypass the ASA I can confirm I get up to 99 Meg up and down.The service was previously connected to a 15 Meg interne...

Enable IPS on Router

I enabled IPS on a 2901 router. The signatures are uploaded and it is enabled on an interface. When I goto signatures I get a message box that says "You must first enable IPS before configuring signatures. To enable IPS, go to IPS Policies and enable...

Resolved! ASA static NAT Problem

Dear All I am trying to configure the Static NAT to access the Web server from internet. But when i try to configure the Static NAT its not reflecting inside the configuration and disappearing. I don't know the reason may be its software bug or somet...

Multiple syslog server as per the rule

Hi All,I have a question. Can we configure multiple syslog server in ASA for specific rules.Example : Can we configure one syslog server for cleanup rule and another syslog server for other rules?

Resolved! Verification of TCP state bypass on Network

Hi everyone,I know the working of TCP state bypass and i have config under ASA under global policy.class-map all-traffic match anypolicy-map global_policyclass all-traffic set connection advanced-options tcp-state-bypassThis ASA connects to switch...

ASA Migration // 5510 to 5525-X

Hi,I've read up a fair articles detailing how to migrate/upgrade from ASA 5510 to a 5525-X and attempted this today without much luck.I have basically copied the existing config on the 5510, edited the Interface names to reflect that the 5525 has all...

Resolved! Multiple Vulnerabilities in Cisco ASA Software - Adivisory ID

Hello,looking at this advisory: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141008-asa, in Software Versions and Fixes table all fixes releases are interim ones while mine is an ED release (9.1.5). Do you think I h...

Resolved! Cisco ASA 5505 setup external access to internal webserver

I'm hosting internal webserver (ports 80 and 443).I;m having problems with my Cisco ASA config:--------------CONFIG BEGIN -----------: Saved:ASA Version 8.2(5)!hostname ciscoasanamesname 192.168.1.254 ciscoasaname 192.168.1.0 LAN-Homename 192.168.1.3...

FWSM Error

Dear Expertspls find the attached errorI am trying to convert the running config file of FWSM to ASA module (.TXT) by the migrated document as mentioned below, I am using the migration tool for windows, but i couldn't migrate becz of the attached err...

Network Security

Forum Posts

Anyconnect essentials compatibility

ASA 5510 Dual internet connections getting Deny Reverse Path Check

IPS and CSC

Cisco FWSM in 6500 VSS environment

ASA 5505 Download speed throughput very slow with new modem

TCP timestamps security vulnerabilities

ASA 5520 speed issue

Enable IPS on Router

Resolved! ASA static NAT Problem

Multiple syslog server as per the rule

Resolved! Verification of TCP state bypass on Network

ASA Migration // 5510 to 5525-X

Resolved! Multiple Vulnerabilities in Cisco ASA Software - Adivisory ID

Resolved! Cisco ASA 5505 setup external access to internal webserver

FWSM Error

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Anti-Malware Application condition CS

Disable IPS on Firepower 4120 for PSN/PCI Scans

What is taking place behind the installation process of Firepower 2120

Configuring OKTA SAML on FTD 7.2.5

Palo Alto to Cisco Migration Tool count_summary error

ISE Internal CA issued EAP-TLS auth fails after renewing EAP Auth cert

View hit count on FMC for FTD ACP's

How to bring up a port channel interface that was shut through cli

FMC100 migration to FMCv

firepower SSL policy cipher suite for default action