Network Security

ASA 7.0 to ASA 9.0 Migration

Hi,Sorry if I have posted in the wrong forum. I have an old Asa5505 7.0 with unlimited license and I wanted to replace it with new ASA5505 9.0 10 user license. I copied the running config from the old ASA5505 7.0 and paste it to new ASA5505 9.0. Whe...

Resolved! Help with basic config for ASA 5505

Hello,I've tried so many config methods I'm not confused on the issue.I have a DSL modem from Virgin Media and if I plug my laptop into it it gives me a public IP and I can get on the internet, it is doing some sort of DHCP. Now I have put the outsi...

Interface for CX module

Do i have to use the Management port to configure the CX module, also is there any other way to access the ASA 5515 CX module other than accessing it via managemnt port, i dont want to terminate the management port on to my l2 swithc . But the issue ...

Resolved! Multiple SNMP community strings possible on ASA ?

Hello Guys - We are monitoring our client's ASA firewalls (various 7.x versions) using snmp v2 configuration. Our monitoring servers are sitting behind management interface of devices.A new requirement has come up where another company will need to m...

ASA5510 9.1 same-security-traffic

Hi everyone,is there still the same problem with communication between two subinterfaces on same security level? Please see part of configuration below. I have two vlans 40 and 60 on switch. One uplink connected from switch to FW interface ethernet0/...

Strange issue on newly installed 5510

Hi all, A couple issues came up after installing our new 5510, a couple sites that uses the same ISP as our's had issues, one where we can email them but their incoming to us wasn't working, and another site we couldn't browse on the web. This all wo...

Resolved! DNS Doctoring issue - ASA 5540

I am in the process of setting up a segrated Guest Wifi network in my office and in doing so realized that I can not access my NAT'd externally facing web servers through this network. This guest network is using 8.8.8.8 for DNS and is properly resol...

Resolved! ASA5545 Show Version vs Show Inventory

Customer has a new ASA5545 and needed to add a new license PAK.They did a show inventory to get the serial number for the device. Unfortunately this is different from the serial number you get from the show version which is what is checked when you ...

Cisco ASA can't establish Site-to-Site VPN or ping outside, but servers inside (NAT'd) can?!

Hi,I've got an issue where servers within an internal network connected to the ASA can access the internet (These are Dynamically NAT'd as expected).However, when I try to ping from the ASAs outside interface to the internet, I can't - I also can't e...

ASDM displaying in management access rules copy of firewall access rules in context mode 5585

In device management via the asdmunder management access rules in context mode on a ASA 5585 with 9.0.3 version (tested with several versions),All the firewall rules are displayed that are managed by TAB firewall, access rules.All rules from of all i...

Resolved! firewall interfaces & nat

Hi,I have this query to understand when does the asa actually look into nat factor when traffic is traversing interfaces/security level.Is it tied to the security level or interfaces or both?For the discussion sake, i would just put up the below inte...

Resolved! ASA 5512 inside traffic storm

Hello. I posted an example of "how have not to be" network topology, and unfurtunately I have this topology... Firstly I have to say that my switches are not manageable and don't support VLANs. So, I have 3 internal networks in the SiteA and one netw...

Disabling sqlnet inspection in ASA

If we disabled the sqlnet inspection in one firewall context, would this be applied to other contexts too?Thank youDarius.Fariborz@cgi.com

ASA-7-710005: UDP request discarded

Hi All,Hope you are doing good,Continously I am getting below error log.Dec 07 2013 11:30:02: %ASA-7-710005: UDP request discarded from 10.109.6.1/67 to WTBB:255.255.255.255/68Dec 07 2013 11:24:00: %ASA-7-710005: UDP request discarded from 0.0.0.0/68...

Managing certificates in a failover pair

Hi all,I'm having some problems with certs in a failover pair.I've imported a wildcard cert onto the primary node in a failover pair. This cert was then bound to the outside interface. This is working on the primary node fine for clientless SSL VPNs....

Network Security

Forum Posts

ASA 7.0 to ASA 9.0 Migration

Resolved! Help with basic config for ASA 5505

Interface for CX module

Resolved! Multiple SNMP community strings possible on ASA ?

ASA5510 9.1 same-security-traffic

Strange issue on newly installed 5510

Resolved! DNS Doctoring issue - ASA 5540

Resolved! ASA5545 Show Version vs Show Inventory

Cisco ASA can't establish Site-to-Site VPN or ping outside, but servers inside (NAT'd) can?!

ASDM displaying in management access rules copy of firewall access rules in context mode 5585

Resolved! firewall interfaces & nat

Resolved! ASA 5512 inside traffic storm

Disabling sqlnet inspection in ASA

ASA-7-710005: UDP request discarded

Managing certificates in a failover pair

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

FPR1010 File Permission error when copying

Question on S2S Tunnel to Azure using FTD or Azure Native S2S

Setting out TCP MSS on FTD only for non-ipsec endpoints

Cisco Stealthwatch ipfix exporter

FTD Configuration Resource Utilization

Cisco 2130 FPR Upgrade

FTD issue with Anyconnect authenticating via AD

Windows Directory Rule on FMC

VPN failing to come up following migration..

FMC 7.6.0: MonetDB crashes