I was trying to create a single access list using ip rather than specifying two with both udp and tcp. My rule looked like this:access-list ACL_Group_IN extended permit ip object-group Isolated_workstations object-group Antivirus_Server object-group...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,510) -
Cisco Bugs
(31) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Management Center (FMC)
(3) -
Cisco Secure Firewall Threat Defense (FTD)
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(319) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(90) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,553) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,769) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hi Can a license on a physical device rehostable to a virtual device? or vice versa? Example: DC1000-K9 << =====>> FS-VMW-SW-K9 ...
ASA is dropping all traffic to the interfaces. Routing is fine as traffic FROM the ASA reaches anywhere needed fine.Via the packet capture it can be seen that the implicit deny rule is blocking traffic. I have added an any-any rule (as this is test...
I am having issues with a new ASA deployment.I have an inside interface connected and routing into my network (I can ping pretty much everything I need to). The issue is the return traffic. All return traffic seems to be being blocked despite the f...
Hello All, Can we share an interface with more than 1 context. Say if I want to use interface Gig0/0 as DMZ/Extranet interface can I use the same interface in more than 1 context.
I am trying to open video conferencing tcp port 1720 (h323), which would allow IP Video Conferencing calls to be placed to our Business. I have tried several commands, but its not working out. The Global IP address is 64.xx.xxx.70.I have used command...
Hi guys,I tried to upgrade a 5540 ASA from 8.2.5 to 8.3.1. When I did I got a huge amount of errors in NATs as per the unidirectional feature...Is there an automatic way to check my current configuration to fix all the misconfigurations? This company...
Salam Aleykum.I have ASA5525-X which have problem in flash memory.I formatted flash: or disk0: , used fsck tool. it solved my problem temporarily. BUT, after fiew hours flash got corrupted automatically. I do not understand the problem.I decided...
Hi,I have generated the following CSR and trustpoint, but it is not showing in ASDM, I can see it in the cli via "show run":crypto ca trustpoint ASDM_TrustPoint0 enrollment terminal fqdn mydomain.com subject-name CN=myCN,OU=IS,O=JSP,C=GB,St=United Ki...
The topology I have is as follows:Internet --> Router (with Public IP) --> ASA (with Private IPs) --> LANWhat I'm trying to achieve is for remote workers to be able to use the Anyconnect client to connect back to the office. Can you please advice i...
Hi,We have a ASA5505 and its set up with a DHCP server, but we can't resolve host names of internal devices. Can anyone give me some pointers on how to get it set up so we can?Thanks.
Hi All,I have been trying to upgrade the software on an IPS-20 module which is part of an active/ active ASA 5585-X set-up.The original software version was 7.2(1) and we wanted to upgrade to 7.3(2) - which has the advantage of supporting SNMPv3.The ...
Resolved! Connecting to different network
Cisco support community,I have a question about subnets and networks, I am a newbie at this so bear with me. I am using MPLS to connect all of our sites, I have two offices each of which have a cisco asa, both on different subnets. Subnet 1 : 192.1...
"show ip access-list", IOS displays matches against each statement within the ACL and you can see counters incrementing or not, useful in troubleshooting. Nexus 3548 does not display any counters with the same command!I must be missing something beca...
Resolved! Unable to send syslog to Kiwi server
Hi Everyone, Firewall inside IP is 10.0.0.1Kiwi syslog server is connected to firewall inside interface IP 10.0.0.10 config ASA1# sh run loggi$logging enablelogging timestamplogging buffer-size 5000...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 10 | |
| 5 | |
| 5 | |
| 2 | |
| 1 |
