Network Security

Resolved! ASA 5505 DMZ for Wireless Guest Access

Hello,Here is my delima:I'm deploying an Apple Airport Extreme BaseStation with 7 Airport Express "repeaters" throughout my network/building. The Apple only allows two wireless networks, private and public. Your can only select from 192.168.x.x, 172....

Resolved! Understanding teardown from log

Is the Reset-I always from the device on the higher security level interface (in this case 172.16.112.10/3389?In the second case, what conclusions can be drawn from the teardown information "TCP FINs" - who is it that send the first FIN?I'm strugglig...

Resolved! ASA IPS Test

If my ASA IPS is in promiscous mode, can I demonstrate traffic bloc/drop for any signature?I am sure in inline mode it can be done but is it possible with promiscous mode since in this mode the traffic is only duplicated and sent to IPS.

Changing SSH Max-attempts to 3

What is the correct way now to make set the maximum SSH attempt to 3. All I have found in the new versions (9.0 and above) is the aaa-server max-attempts. Can someone point me in the correct direction?Thanks,Jeff

Resolved! Cisco ASA 8.3+ NAT Based on Internet Source IPs

Hi,I don't think this is possible but want a second opinion on it. The scenario is two Internal LAN/Inside servers with a private IP each.One Public IP on the Outside Interface. The customer wants to use one URL that resolves to the Public IP on 443 ...

ASA 5505 9.1 Correct office Global Access rules via ASDM

Hello Everyone. I am pretty new to this networking stuff so please forgive my ignorance. I have been going thorugh material for days now to try and get up to speed on setting up our small office network which is one job I have been give...

ASA 5510 / Aironet 1140 / Apple iDevices

Good MorningOn Wednesday of last week, I upgraded to IOS version on my ASA 5510 to the latest version. Since this upgrade, I have been having issues with certain wifi clients (Apple iDevices) obtaining IP's via DHCP from the ASA. Nothing changed on t...

Resolved! Cannot connect to other clients in Remote access VPN (ASA)

HiI have a cisco ASA 5510 device configred with remote access VPNI can connect all host on INSIDE and DMZ network, but not able to access other clients connected to same VPN. For example if I have 2 clients connected to VPN, clientA and clientB, with...

how to connect to other clients on remote VPN (ASA)

I have a cisco ASA 5510 device. I have confiured remote access VPN on it.It works fine, i can connect to hosts on INSIDE as well as DMZ, but i cannot connect to other clients that are connected to same VPN.For example i have to clients connected to V...

ASA 5505 Wan Failover

Hi!I would like to know how the failover works. I would like this setup.One interface with wired attached ISP and One interface with 4G(umts) Router.What license do i need to get this to work?Normally interface to my isp never goes down but some othe...

Need Assistance on Fixing Static Rule

HiI just made a simple change on my firewall and my static ip rules got change. This is the current configuration.object-group network administrative-servers network-object host 171.31.53.17 network-object host 171.31.53.195 network-object host 12...

Resolved! Cut-through proxy for remote Anyconnect clients

Hi. I am trying to apply cut-through proxy on Anyconnect clients.I am using ASA 5505 running asa914-k8.binAnyconnect clients are connecting to my outside interface. I am trying to apply the cut-through proxy on those clients trying to access any http...

Resolved! Redirect denied traffic

Hi. Is it possible to redirect denied traffic in Cisco ASA?For example if a user is trying to access an HTTP page which is denied to him by an access-list, then that user is redirected to another HTTP webpage.The ultimate goal is to notify the user t...

some trouble in configuring acl

Hi, can someone help me in configuring acl on asa 5055.i have inside network, outside network and third network. any time when i try to make connection betwwen to host in inside network with packettracer of the firewall i get this(see the image), can...

Tuning IPS Signatures in an Industrial Network

Hi IPS Experts, I have a Question in configuring of the IPS moduls of a ASA5515-X. But first let me explain a little bit about the network and the structure. We are using the ASA5515-X Firewall Cluster internal of our process network. The firewall ro...

Network Security

Forum Posts

Resolved! ASA 5505 DMZ for Wireless Guest Access

Resolved! Understanding teardown from log

Resolved! ASA IPS Test

Changing SSH Max-attempts to 3

Resolved! Cisco ASA 8.3+ NAT Based on Internet Source IPs

ASA 5505 9.1 Correct office Global Access rules via ASDM

ASA 5510 / Aironet 1140 / Apple iDevices

Resolved! Cannot connect to other clients in Remote access VPN (ASA)

how to connect to other clients on remote VPN (ASA)

ASA 5505 Wan Failover

Need Assistance on Fixing Static Rule

Resolved! Cut-through proxy for remote Anyconnect clients

Resolved! Redirect denied traffic

some trouble in configuring acl

Tuning IPS Signatures in an Industrial Network

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Migrate FirePower1120 to Firepower1150

Firepower 1010 Interface config to connect vlans to remote switch

Failover license

Cisco Firepower - icmp thru FW, inside to outside interfaces

FTD Back-to-Back VXLAN

Form HA for Cisco FTD issue

FTD NAT Problem

Which interface to enable in Passive mode for FTDv for monitoring?

FPR-2110 (ASA-Image): Correct option at image upload?

FTD Firepower 1150 active/standby failover link