Network Security

ASA 5505 - STATIC NAT PROBLEM

Hi guys,As you can see in the attached file i have a web server in dmz which has a real ip of 172.168.100.1 and a public ip 192.168.200.1 (let's assume that this is a public ip address for security reasons). All necessary configuration regarding natt...

External / DMZ Monitoring

We currently have some Cisco 3560X switches that are internet facing and also some Cisco 3750X switches that are within our Corporate DMZ.The external facing switches are just really operating at layer 2, have no IP address configuration and just for...

ASA 5505 getting dchp from the outside interface

Hi, i have this configuration on on the Asa client : Savedz: Written by enable_15 at 13:39:22.779 UTC Thu Aug 15 2013!ASA Version 8.2(5)!hostname Lakewoodenable password 8Ry2YjIyt7RRXU24 encryptedpasswd 2KFQnbNIdI.2KYOU encryptednames!interface Eth...

Resolved! IDSM inspection load on 100%

Now I have IDSM with 100% inspection load on busy hour and followed by missed packets percentage increasing at that time. The IDSM interface is setting as promiscuous interfaceIs it means my network throughput will limited by IDSM max inspection load...

Tunnel Manager has failed to establish an L2L SA

Hi,We have to remote sites which are connected with Cisco ASA appliances to our data center and the other remote site's ASA has some very strange log entries.Strange thing is that the site-to-site VPN connection works anyway and other ASA appliances ...

ip helper-addess on ASA

Hello All,Would someone please tell me how to set ip helper-address on a subinterface in a ASA?We have different dhcp server on the network on a linux boxBest Regards,-Rouzbeh

Resolved! ASA 5505 DC Power

We have a use case for an ASA 5505 with DC power. The device comes with an AC adapter. Are there DC supplies available? We have station bus power, are there basic cables with the appropriate connector available?

Subnet ID change on Inside interface

Hi All,Two firewalls connected in Failover mode. We would like to change subnet mask on Inside interface.Can we achive this without any impact ? becuase firewall is in production and do not want to get any distrubtion to the existing sessions.ThanksS...

A TCP packet was rejected because it has an invalid sequence number or an invalid acknowledgement number.

Dear All, We have installd cisco ASA 5540 along with AIP-SSM-40 Module as our perimeter device. I was troubleshootig an Microsoft ISA proxy server issue when i found this error message occuring frequentlyA TCP packet was rejected beca...

Tshoot ASA interface outage

I have an interesting problem that I am looking for some advice on. I recently replaced an ASA5510 with an ASA5525 on site. The LAN interface on the ASA plugs into a linux transparent proxy server. Over the last few weeks since the ASA replacement...

ASA w WCCP redirecting to Squid on CentOS- TCP re-transmissions

Hello all... hoping somebody can help me here. Having a bear of a time getting WCCP redirection working for http clients using squid on CentOs as a proxy and a ASA as my firewall device. I've followed 10 or so articles to no avail. This one here see...

Cisco ASA 5510 Regular static Nat is not working

We have Cisco ASA 5510 FirewallHaving 4 public ips in which 3 are working without any issues.The 4th public ip previously working but suddenly it stoped.it will work only if i connect the cable to LAN and Manually assign the Public IP. My ASA Regular...

How Can i Use two Different Public IP Addresses no my DMZ with ASA Firewall.

How To Using Two Different Public IP Address on My DMZ with ASA 5520Postado por jorge decimo decimo em 28/Jan/2013 5:51:28 Hi everyone out there.can any one please help me regarding this situation that im looking for a solutionMy old range of public ...

ASA HA

Gents currently we have a ASA which connects to a single swicth 2960, the 2960 swicth connects to two routers(HSRP) the switch has vlan 10 with /29 address and points towards HSRP address of the routers.compony has realise that its a single point of ...

How to add an ASA to PRIME 4.2

Hi Friends,I am looking for help with adding an ASA to PRIME for a customer. Has anyone ever done this? I have been searching Cisco documentation and I am unable to find any information expalining how to accomplish this. Any help would be greatly a...

Network Security

Forum Posts

ASA 5505 - STATIC NAT PROBLEM

External / DMZ Monitoring

ASA 5505 getting dchp from the outside interface

Resolved! IDSM inspection load on 100%

Tunnel Manager has failed to establish an L2L SA

ip helper-addess on ASA

Resolved! ASA 5505 DC Power

Subnet ID change on Inside interface

A TCP packet was rejected because it has an invalid sequence number or an invalid acknowledgement number.

Tshoot ASA interface outage

ASA w WCCP redirecting to Squid on CentOS- TCP re-transmissions

Cisco ASA 5510 Regular static Nat is not working

How Can i Use two Different Public IP Addresses no my DMZ with ASA Firewall.

ASA HA

How to add an ASA to PRIME 4.2

Cisco Firepower 7.4.2 rules enable outbound traceroute

FPR1120 (FDM) SSL Decryption Configuration

FMC RA VPN policies integration with Azure AD

Enabling Port Scan on FTD FMC

FMC: Automatic renew certificates?

ASAv Smart Licensing Registration fails (certificate validation failed

ASA Failover: Only one device detects the other (different chassis)

FTD avpairs for CLI access

Firewall 4200 Series v7.4.2.1-30; vPC ACI port-channel suspended issue

Can you tell me what FMC's /var/run/rpc.statd.pid file is doing?