Network Security

Resolved! asa 5520 nat problem

Hi I have an Cisco Asa 5520 and i want to make vpn site to site using another interface with a lan to lan carrier, the problem is when i try to pass traffic have the follow syslog error:No translation group found for udp src lan2lan:10.5.50.63/44437...

Cisco ASA 7.2.4 -> 9.0.3 Upgrade

Hi Community, all helpful responses rated! We have some Cisco ASA5550's running code release 7.2.4. We are planning on upgrading these to 8.0 -> 8.2 -> 8.4 -> 9.0.3, step upgrade as proscribed by Cisco. Now due to the nat-control and NAT syntax chang...

Resolved! Can we enable asdm access through outside interface?

Hi I have on firewall in a different LAN segment and I want to access that firewall through asdm however I am sitting in outside zone for that particular firewall.

Resolved! Cisco pix501 enable telnet

Hello What aré the cli commands to enable telnet Conection in a pix501, can you help me?? Thanks Anna.

Radius auth to standby ASA in Active Active Failover

Hi Everyone,When ASA is in Active/standby failover i can ssh to standby ASA using Radius.But when ASA is in multi context mode Active/Active failover i can not do Radius Auth to standby ASA?Is this default behaviour?RegardsMAhesh

Resolved! Replacing Production ASA5520 firewalls with ASA5545x firewalls and minimizing downtime

Hi,We intend to replace our existing ASA5520 firewalls (including IPS modules) with new ASA5545x firewalls including IPS licenses. As these are production firewalls, I was wondering on the best strategy to replace the firewalls while minimising down...

Java security warning when starting ASDM

Hello all, I am trying to figure out what I am missing in regards to getting ASDM to run without the attached warning. If I update my Java ASDM will no linger work. I can uninstall Java, re-install my lower version and ASDN starts working again just ...

What does the 'rtcli async executor process' process do on a Cisco ASA and why would it cause high CPU load?

I noticed that the CPU on our ASA had jumped from around %4 to 30% consistently a few weeks back. The process below seems to be causing the load, but I can't find any information on what it does and how to resolve the issue.ASA# sh proc cpu-usage so...

Port Forwarading between two internal servers on an ASA 6.3

We are trying to set up email continuity through Mimecast. Part of the set up is active directory synchronization. In order for that to happen, the DC will need to communicate with Mimecast. Currently the DC does not have a public IP. We were tol...

Resolved! How to connect to the internet with ASA 5515 X?

Hi all: I just got my new ASA 5515 X firewall and I got stuck in the first steps. I can ping a public IP (8.8.8.8) from the device but I cannot ping it from my LAN. I know I am missing either NAT rules or Access rules or maybe both, but I need some h...

NAT failed - ?

ciscoasa# clear xlatepacket-tracer input inside icmp 10.9.250.3 0 0 8.8.8.8 detailedPhase: 1Type: ROUTE-LOOKUPSubtype: inputResult: ALLOWConfig:Additional Information:in 0.0.0.0 0.0.0.0 OUTSIDEPhase: 2Type: NATSubtype:Res...

Can I have multiple different vlans in one Single Mode Transparent Firewall

Hi,I am about configuring Data Center FW (ver 9.2) to protect multi tier Servers Farm; Web, Applications & Data Base. There is a requirement to set the FW in Transparent Mode, while the license is the base 2-contexts, only.I wonder if One Single Tran...

Add Web content into ISE Web Server?

Hello,We use Cisco ISE 1.2.0.899 on our network.We would like to add a Web based documentation about Guest Portal ("how to find MAC Address", "how to release/renew IP Address"...) on our network to help users.Idealy we would like to host these data o...

Resolved! Configuring a DMZ on ASA 5505

I have a Cisco ASA 5505 that I am trying to configure a web server on a DMZ. I have the DMZ interface working, but I am not able to get access from to the server connected to the DMZ interface. I have been looking for a week now on google, but haven'...

cisco asa 5510 Patch OpenSSL to 0.9.8j or later

Our PCI scan found the following bug "Patch OpenSSL to 0.9.8j or later"We have an ASA 5510 running 8.2(2) with the following ssl: ssl encryption rc4-sha1 aes128-sha1 aes256-sha1Reviewing the 8.2x OpenSSL notes in the releases documentation it specifi...

Network Security

Forum Posts

Resolved! asa 5520 nat problem

Cisco ASA 7.2.4 -> 9.0.3 Upgrade

Resolved! Can we enable asdm access through outside interface?

Resolved! Cisco pix501 enable telnet

Radius auth to standby ASA in Active Active Failover

Resolved! Replacing Production ASA5520 firewalls with ASA5545x firewalls and minimizing downtime

Java security warning when starting ASDM

What does the 'rtcli async executor process' process do on a Cisco ASA and why would it cause high CPU load?

Port Forwarading between two internal servers on an ASA 6.3

Resolved! How to connect to the internet with ASA 5515 X?

NAT failed - ?

Can I have multiple different vlans in one Single Mode Transparent Firewall

Add Web content into ISE Web Server?

Resolved! Configuring a DMZ on ASA 5505

cisco asa 5510 Patch OpenSSL to 0.9.8j or later

What's the easiest way to add a new subnet in FTD b4 decomming the old

CSCvr46845 - ENH: Health message 'Cisco Cloud Configuration - Failure'

CSCws86953 - FMC Generated reports missing connection column on pdf

Cisco FTD/FMC IPsec Tunnels: “Up” Doesn’t Always Mean Working

Cyber Vision Sensor version

TCP-state-bypass on FMC managed FTD

Latency Between FMC and FTD

Port Scan Enablement in RAVPN Gateway

How does BGP flowspec work

FTD to AWS VPN gateway IKEv2 phase 1 lifetime mismatch