Network Security

Cannot access internal PPTP Server!

Hi All, pulling my hair out on this one... We have an internal PPTP server that works fine when I access it via internal subnet. However, I cannot get access from an external IP via our ASA 5505. I've tried enabling/disabling PPTP Fixup as well as...

Cisco 2911 IOS Fireall configuration for HTTPS trafic block

Hi I am configuring Cisco 2911 Sec-k9 router. i am able to block all the sites but not able to block Https Trafic like Facebook,youtube,some unwanted Sites. how to block them. i tried with key word blocking, but still https Sites are opening.and i wa...

ASA 5505 - STATIC NAT PROBLEM

Hi guys,As you can see in the attached file i have a web server in dmz which has a real ip of 172.168.100.1 and a public ip 192.168.200.1 (let's assume that this is a public ip address for security reasons). All necessary configuration regarding natt...

External / DMZ Monitoring

We currently have some Cisco 3560X switches that are internet facing and also some Cisco 3750X switches that are within our Corporate DMZ.The external facing switches are just really operating at layer 2, have no IP address configuration and just for...

ASA 5505 getting dchp from the outside interface

Hi, i have this configuration on on the Asa client : Savedz: Written by enable_15 at 13:39:22.779 UTC Thu Aug 15 2013!ASA Version 8.2(5)!hostname Lakewoodenable password 8Ry2YjIyt7RRXU24 encryptedpasswd 2KFQnbNIdI.2KYOU encryptednames!interface Eth...

Resolved! IDSM inspection load on 100%

Now I have IDSM with 100% inspection load on busy hour and followed by missed packets percentage increasing at that time. The IDSM interface is setting as promiscuous interfaceIs it means my network throughput will limited by IDSM max inspection load...

Tunnel Manager has failed to establish an L2L SA

Hi,We have to remote sites which are connected with Cisco ASA appliances to our data center and the other remote site's ASA has some very strange log entries.Strange thing is that the site-to-site VPN connection works anyway and other ASA appliances ...

ip helper-addess on ASA

Hello All,Would someone please tell me how to set ip helper-address on a subinterface in a ASA?We have different dhcp server on the network on a linux boxBest Regards,-Rouzbeh

Resolved! ASA 5505 DC Power

We have a use case for an ASA 5505 with DC power. The device comes with an AC adapter. Are there DC supplies available? We have station bus power, are there basic cables with the appropriate connector available?

Subnet ID change on Inside interface

Hi All,Two firewalls connected in Failover mode. We would like to change subnet mask on Inside interface.Can we achive this without any impact ? becuase firewall is in production and do not want to get any distrubtion to the existing sessions.ThanksS...

A TCP packet was rejected because it has an invalid sequence number or an invalid acknowledgement number.

Dear All, We have installd cisco ASA 5540 along with AIP-SSM-40 Module as our perimeter device. I was troubleshootig an Microsoft ISA proxy server issue when i found this error message occuring frequentlyA TCP packet was rejected beca...

Tshoot ASA interface outage

I have an interesting problem that I am looking for some advice on. I recently replaced an ASA5510 with an ASA5525 on site. The LAN interface on the ASA plugs into a linux transparent proxy server. Over the last few weeks since the ASA replacement...

ASA w WCCP redirecting to Squid on CentOS- TCP re-transmissions

Hello all... hoping somebody can help me here. Having a bear of a time getting WCCP redirection working for http clients using squid on CentOs as a proxy and a ASA as my firewall device. I've followed 10 or so articles to no avail. This one here see...

Cisco ASA 5510 Regular static Nat is not working

We have Cisco ASA 5510 FirewallHaving 4 public ips in which 3 are working without any issues.The 4th public ip previously working but suddenly it stoped.it will work only if i connect the cable to LAN and Manually assign the Public IP. My ASA Regular...

How Can i Use two Different Public IP Addresses no my DMZ with ASA Firewall.

How To Using Two Different Public IP Address on My DMZ with ASA 5520Postado por jorge decimo decimo em 28/Jan/2013 5:51:28 Hi everyone out there.can any one please help me regarding this situation that im looking for a solutionMy old range of public ...

Network Security

Forum Posts

Cannot access internal PPTP Server!

Cisco 2911 IOS Fireall configuration for HTTPS trafic block

ASA 5505 - STATIC NAT PROBLEM

External / DMZ Monitoring

ASA 5505 getting dchp from the outside interface

Resolved! IDSM inspection load on 100%

Tunnel Manager has failed to establish an L2L SA

ip helper-addess on ASA

Resolved! ASA 5505 DC Power

Subnet ID change on Inside interface

A TCP packet was rejected because it has an invalid sequence number or an invalid acknowledgement number.

Tshoot ASA interface outage

ASA w WCCP redirecting to Squid on CentOS- TCP re-transmissions

Cisco ASA 5510 Regular static Nat is not working

How Can i Use two Different Public IP Addresses no my DMZ with ASA Firewall.

Reuse Object Group in a single ACL line

CSCwm49782 - enhance sma 2nd cruz heartbeat logging

FMC 7.4 and multi-instance FPR3130 chassis upgrades

Announcing the release of Firewall Migration Tool Version 7.7.10

CSCvx25052 - DOC: FTD Syslog messages 43000x missing from FMC

ACME on ASA

Snort3 rate filter

PBR with AnyConnect

FMC: Automatic renew certificates?

Finding the forgotten IP address of a Cisco PIX 506E