Network Security

Resolved! ASA 5520 - Deny a range of IPs

Hello, This should be a simple question but I wanted to verify first before I made the changes on the ASA. I'm trying to deny the following range or IPs (10.2.1.201-10.2.1.206) from accessing the Internet. So, I created teh following acl:access-list ...

Resolved! ASA 9.x NAT issue

So I'm trying to do a simple test in a lab environment but can't seem to understand why the syntax for NAT statements is not working in 9.x. Here is an example:ASA: outside ip 99.99.99.99/29 inside ip 192.168.4.1/24NAT outside ip 99.99.99.100 to ...

Resolved! Unable to see logs while using split tunnel for RA

hi everyone,I have config RA VPN at my home lab using split tunnel.I can connect fine and able to browse the internet.When i go to internet sites i do not see logs generated on the VPN ASA?Need to understand whats the reason behind this?ASA1# sh co...

Default cipher suite used by ASA for SSH?

By default ASA used which encryption algorithm i.e. cipher suite for SSH?Thanxs

Problem with reflexive ACLs

Hello,I've created a reflexive ACL to allow IP SLA flows between two routers. Looking at the ACL counters, none of the outbound or inbound IP SLA permit statements are incrementing. Looking at the logs, I can see that my IP SLA return traffic is be...

Resolved! Certificate validation Failure please help urgent :(

Hello All i need some urgent attention please. suddenly i am unable to access my ASA firewall i am not sure why ? I tried admin user and other user i have created before i have alos installed ASDM on new system still same Error . also i am able to lo...

Resolved! Overlaping Static NAT Rule

Hello All . I have an issue while creating NAT rule i am having the Error Overlaping Static NAT Rule Here is the details I have already configured static NAT for RDP 3389 Traffic to my host 192.168.1.128 which is working fine. (so i can RDP from outs...

Resolved! Edit banner SSH-2.0-Cisco-1.25

Hello, Is possible to edit the default message SSH-2.0-Cisco-1.25 ??That message is the response when ssh is enabled on a cisco device router/switch/Regards

type of asa to ensure our dns server??

Hi to allI've a problem to ensure my public dns server, this server is inside my lan and exposed to internet, whit actual firewall we have a lot of problem of dns flooding or dos attack, in fact when we open dns port and route traffic to dns server ...

model of asa for response rate limit

Hi , i'm new , just registeredI need to know what kind of cisco asa i should buy for my company, i need to use response rate limit , for limit dns requestes on my dns server.If you' can helm me, i'll be very gratefull..

[SOLVED]Failure of the ZBF migration from cisco 2811 ios 12.4/K9 to 1941 ios 15/k9

Hello to everyone,I write because I have decided to pass from a cisco 2811 with ios 12.4/k9 to a cisco 1941 ios 15/k9, migrating configuration I have a problem with the ZBF.I do not know if it's a problem of policy or differences between ios. Could s...

add a local user to ASA 5512-x

Hello peopleI am trying to add a local user to our newly purchased ASA firewall 5512-x.we do not have a Radius or AAA serverI want to add a user who has 'view only' access level on the firewall, can I just add this new user without needing to bother ...

source based PBR issue

I come up with requirement of source based (IP) PBR on my firewall ASA 5510. My requirement is as followsWe have a Datacenter and a branch connected with eachother through IPSEC and MPLS. IPSEC is primary connection and MPLS is secondary one. We hav...

Resolved! ASA 5510 Vlan

i have two cisco asa 5510 firewall and at failover and i have one server in dmz zoneand now i want more servers in dmz zone with one asa dmz interfaceis ther any solution regarding this?Navaz

Resolved! ASA 5510 with 2811 & 2821

Hello Everyone,Can anyone help me figure out what I changed that will no longer allow me to run the ASDM from my remote location? It was working fine yesterday. I created a DMZ interface and was working on getting that up and running, but I didn't ch...

Network Security

Forum Posts

Resolved! ASA 5520 - Deny a range of IPs

Resolved! ASA 9.x NAT issue

Resolved! Unable to see logs while using split tunnel for RA

Default cipher suite used by ASA for SSH?

Problem with reflexive ACLs

Resolved! Certificate validation Failure please help urgent :(

Resolved! Overlaping Static NAT Rule

Resolved! Edit banner SSH-2.0-Cisco-1.25

type of asa to ensure our dns server??

model of asa for response rate limit

[SOLVED]Failure of the ZBF migration from cisco 2811 ios 12.4/K9 to 1941 ios 15/k9

add a local user to ASA 5512-x

source based PBR issue

Resolved! ASA 5510 Vlan

Resolved! ASA 5510 with 2811 & 2821

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

FTD stuck on empty prompt

Umbrella DNS Connector Integration with Firepower Management Center

Cisco Secure Access for Linux

Seeking Project Ideas

Error Accessing Exclude Page Under System Health

FIrepower 1010 DHCP not pushing updated DNS

Firepower 1010 Port forwarding issue after upgrade from 7.2.5 to 7.2.6

source base Application filtring in FMC

trustpoint certificate migration from asa to ftd fmc.

does TCP_Bypass support fmc 7.4.2