Network Security

How to Open port 80

I have configured Basic firewall on my cisco 2911, I want to open port 80 for a packaging machine IP (192.168.0.28 255.255.252.0) which uses tcp port 80 to connect with live ip of its server in case of any technical problem, so that support technicia...

Novell ZENworks Desktop Management TFTPD Code Execution

Hi. I've noticed that my IPS is blocking this: Novell ZENworks Desktop Management TFTPD Code Execution: sig ID:36790It also signalling that I am an attacker.Two Linux machines and one Windows Server 2008 R2 are classified as those attackers . Does ...

Resolved! Difference between these 2 object groups

Hi Everyone,Need to understand about object-group network belowwhen i run the command sh run object-group id subneton fw1 it showsnetwork-object 10.0.0.0 255.0.0.0network-object 172.16.0.0 255.240.0.0network-object 192.168.0.0 255.255.0.0Same com...

ASA 5505 - PPPOE, No PC Client Access to the Internet

The setup is simply this: Verizon D-Link DSL Modem/Router in bridge mode (ethernet ATM bridge) to ASA5505 to PCs.The PCs get an IP address, default gateway, DNS server IPs from ASA5505.Win 7 and XP Pro PCs get IPs, but message warning "No Internet Ac...

Resolved! ASA5505 site to site - vlan not communicating

I got two asa 5505 - with security plusASA8.43 - ASDM 6.47I have three vlans that need to communicate over the vlan. SiteA Site B1. Inside vlan11 192.168.11.1 to 192.168.10.1 -...

ASA Policy-Map Check

Hello everyone,I've just constructed a very small, very specific policy-map for the first time on our ASA 5510 and I wanted to run it by you all to tell me what I am doing wrong (I am sure I've messed something up) and how I can resolve it.The use ca...

Firewall Management - All Access Pass?

Hello All,just wondering if the prevailing philosophy on firewall management is to 1) allow everything outbound and restrict inbound or 2) restrict both inbound and outbound?We have a situation where we are getting hit with ZeroAcc...

permit any to 1.2.3.4

Hi Allis it possible to create a ACL to permit from any to a particular ip address? i.e I have a ASA with three interfaces (inside, outside and DMZ) and I want to create a ACL to permit from any to inside host (this is probably a bad example but anyw...

Resolved! ASA 8.4 Twice Nat question

Hello,I have a question concerning twice NAT.Lets assume that we have the following construction:nat (Inside,Outside) source dynamic Real.Source Translated.Source destination static Real.Destination object network Translated.DestinationMy question is...

Cisco 5505 and single access point.

I have a Cisco 5505 and have an access point plugged into the POE port 7.I have 2 SSID'S on the access point vlan 1 - production on the 192.168.70.0 /24vlan 10 - guest 172.16.0.0 /24 I do not have a seperate DHCP sever so the ASA wil...

Prevent OTT traffic like kakaotalk, wechat

Hi community,Can you share your idea can we prevent VOIP traffic like skype, kakaotalk, wechat, line...? If we can, how to do it, in general?. Because as far as I know these applications are peer-2-peer and use dynamic ports and update version very q...

what does every virtual sensors do when the signature is updated ?

Hi,We'd like to implement ASA5585 with SSP-60.I knew that the inspection will stop while the signature is updating.because sensor app will be stopped.I guess there are only one signature database on IPS which is managed by IPS device.It means every v...

5515x inline IPS questions...

I'm attempting to configure an IPS for my first time and have a few questions... I went through Cisco's quick start guide and it appears that the ASA management and IPS management can have seperate IPs on the same management interface, is that correc...

VCloud Director integration with Cisco VSG and ASa 1000v

Hi Team,I need one validation from you. I am working on the project and the scope is to use “vCloud Director” with Cisco VSG and ASA 1000v to provide intra-tenant and Edge firewall capabilities and not to use vShield Edge. Is this approach do-able?C...

Resolved! Add in VOIP network in Site to Site VPN (ASA 5510)

Hi,I need some help. I have 2 offices (1 in viet and 1 in singapore). These 2 offices already have site to site vpn setup. However, when i try to add in the VOIP network (172.28.200.0/24) into the site to site vpn. I am still unable to reach my call ...

Network Security

Forum Posts

How to Open port 80

Novell ZENworks Desktop Management TFTPD Code Execution

Resolved! Difference between these 2 object groups

ASA 5505 - PPPOE, No PC Client Access to the Internet

Resolved! ASA5505 site to site - vlan not communicating

ASA Policy-Map Check

Firewall Management - All Access Pass?

permit any to 1.2.3.4

Resolved! ASA 8.4 Twice Nat question

Cisco 5505 and single access point.

Prevent OTT traffic like kakaotalk, wechat

what does every virtual sensors do when the signature is updated ?

5515x inline IPS questions...

VCloud Director integration with Cisco VSG and ASa 1000v

Resolved! Add in VOIP network in Site to Site VPN (ASA 5510)

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

Comcast/Ciena handoff to ASA5506?

Cisco FPR-1010 always boot to FXOS mode

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

how are blocking cookie and java be applied in real situation?

Cisco ASA ACL and NAT for RDP through subinterface allow any

is this flow impossible?

DDOS and "Error processing payload: Payload ID: 1"

ASDM unable to login for v7.18(1)152

Logging Informational Configuration in Cisco ASA