Network Security

Resolved! DHCP relay on ASA over IPsec tunnel

Hi Everyone,VPN ASA has ip pool configured to provide the IP to VPN clientsVPN ASA does not use DHCP it use ip pool command.Here is setup client --- internet -----ipsec tunnel--------Internet ASA----VPN ASA-----DNS& DHCPInternet ASA just passes the ...

sh DNS info: no activated FQDN

Hello everybody,I have an ASA 5520 that is running 8.4(2) VPN Plus license.My aim is to block facebook.com for inside network. Below is what I configured" dns domain-lookup outsidedns server-group DefaultDNSname-server 4.2.2.2name-server 8.8.8.8objec...

Resolved! VLAN on ASA5505

Hello,I have configured my access point to have two SSID's, each with their own VLAN.My challenge is to create a VLAN somehow on the ASA so that I can route traffic differently for each SSID.Problem is: I have limited knowledge of the ASA. I am abl...

Resolved! ASA in HA mode/management access.

I have two ASA5515s in HA mode, that is working fine. The issue I'm having is I want to access those ASAs via the Mgmt interfaces. The respective interfaces are connected to a 6509 as a routed connection on different bladed. Example. FW-PRI is on...

Port forwarding on ASA 5505 ver 8.4(7)

Hi Folks,I am trying to setup a port forwarding configuration of ASA in local network. Scenario is internet connected with DSL modem and ASA connected with DSL Modem. Modem redirecting all traffic to the single LAN IP (ASA). Somehow I have tried to c...

Identifying website surfing through ASA

Hi,i have an ASA 5540 installed in my network , there is a internet ILL which is being utilised completely , how can i identify which websites are being surfed through the ASA ? and which hosts are accessing them ?Thanks

Obscure SSH Version

On a recent security audit we we hit because our Cisco devices revealed their SSH version.Is there any way to fix that?

Cisco ASA ACL service port audit

Hi,I have to audit about 40 Cisco ASA (8.4) with ACL service ports as IP or TCP, we want specific ports between source and destinations, please advise the best practice/tool to identify specific port & to avoid any outages.Also many ACL are defin...

Resolved! verify if port is open

How can I verify if port 443 is really listening on a server? The firewall has an acl for incoming traffic allowing 443 to a specific server, but when I go to the server its being hosted on it shows port 80. Before I disable the rule I want to be tru...

881w ISR as ZBFW

Would this device be sufficient for my home networking needs or would I be better off spending the money for say an ASA5505?

Generate RSA key from standby firewall

Hi all,A quick question, Can i change any configuration in the standby firewall? i couldnt login into my primary active firewall. Currently i can only connect to my standby ready FWSM thru session slot command.If i generate a new rsa key for ssh, wil...

Certificate for ASDM access to ASA

Hi allWho knows where the ceritifcate on the ASA can be edited/deleted/renewed which is responsible for the access via ASDM? With the "show crypto key mypubkey rsa" I get all certificates, but none matches with the modulus I can see when I access the...

DNS Resolution in Cisco ASA 5525

Hey all, I will begin by telling you what my end goal is, I am trying to block specific websites on our cisco ASA 5525 using FDQN. I know that this functionality for DNS resolution was not implemented until a specific version.Current Version: Cisco A...

Changing to multiple context-mode

HiHow can we move to the multiple context mode without losing our current configuration? After getting to the multiple cont. mode one context should be the current configuration Is that possible?Thanks.

ASA 5512 Port mapping problem

Access to the internal server internal use public IP address asa 5512 ios 8.6.1

Network Security

Forum Posts

Resolved! DHCP relay on ASA over IPsec tunnel

sh DNS info: no activated FQDN

Resolved! VLAN on ASA5505

Resolved! ASA in HA mode/management access.

Port forwarding on ASA 5505 ver 8.4(7)

Identifying website surfing through ASA

Obscure SSH Version

Cisco ASA ACL service port audit

Resolved! verify if port is open

881w ISR as ZBFW

Generate RSA key from standby firewall

Certificate for ASDM access to ASA

DNS Resolution in Cisco ASA 5525

Changing to multiple context-mode

ASA 5512 Port mapping problem

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

Comcast/Ciena handoff to ASA5506?

Cisco FPR-1010 always boot to FXOS mode

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

how are blocking cookie and java be applied in real situation?

Cisco ASA ACL and NAT for RDP through subinterface allow any

is this flow impossible?

DDOS and "Error processing payload: Payload ID: 1"

ASDM unable to login for v7.18(1)152

Logging Informational Configuration in Cisco ASA