Good morning,I will show you my config first for quick understanding Cisco ASA: 192.168.1.1Inside network: 192.168.2.*Cisco ASA 5512-X with WAN IP configured on the WAN Port. We have 5 public IP addresses from our ISP (let's say for example 10.10.10....
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(82) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,475) -
Cisco Bugs
(18) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(132) -
Cisco Firepower Device Manager (FDM)
(785) -
Cisco Firepower Management Center (FMC)
(2,849) -
Cisco Firepower Threat Defense (FTD)
(3,079) -
Cisco Press Cafe
(1) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(39) -
Cloud
(1) -
Cloud Security
(2) -
Community Bug or Issue
(1) -
Community Feedback Forum
(29) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(254) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(19) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,565) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(314) -
MPLS
(1) -
Multicloud Defense
(1) -
Network Management
(83) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,542) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,756) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(23) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(17) -
Other Switches
(10) -
Other Switching
(3) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(2) -
Security Management
(613) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(5) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(39) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous « Previous
- Next » Next »
Forum Posts
Hi everybody,Problem: I've recently got a new C6506E along with an ASASM for a client. But unfortunately during the boot-up process, the switch powers ASASM down and alerts of a software incompatibility! and it needs a FPD package that doesn't exist...
I need some help with opening ports on my ASA using firmware 9.1.2.I read earlier today that I can create service groups and tie ports to those. But how do I use those instead of using 'object network obj-ExchangeSever-smtp' ? I have the ACL - acce...
Resolved! 5505 VPN and ACL Question
I'm setting up a site-to-site VPN to replace a private MPLS connection at a branch we're going to sell soon (so way cheaper to ditch the fiber and use Comcast).I have a tunnel that is seeming to work fine, but I have a couple technical points that I'...
Resolved! nat rules
I have enabled access rules for certain hosts to permit icmp from the dmz to access the inside interface but it still wont work.I was thinking no nat rules would be necessary, but are they? The security of the inside interface is a higher number than...
Resolved! Multiple NAT to network
I am trying to do the following on an ASA 5505 with Security Plus licensing.public IP ASA private IP ASA199.185.3.25 <-------192.168.1.254 ^ |--------192.168.2.254 ^ |-------- 192.1...
Resolved! allow icmp dmz to inside
In asa version 9.x how can I allow icmp (ping) from hosts in the dmz to the inside interface?Thanks.
We currently have an ASA 5512x failolver pair in production running security plus licences (see below). We recenly purchased 2 Anyconnect Mobility licences and I am tasked with installing them on the appliances. I have redeemed the PAKs accociated ...
Hi,I want to configure SNMP trap and Syslog on ASA5585-SSP-IPS10 with 7.x OS.I want to send thos trap or syslog on my SNMP.your help appreciated.
Hi,We have four IP pools, 192.168.1.0/24 to 192.168.4.0/24 total 1024 ipswe have two ISP for broadcasting our ASNWe have configured 2 Cisco 2821 routers and 2 Cisco 3550 L3 Switches in a high availabilty[HSRP and BGP] from the L3 switches we have ...
Dear All,We have one Cisco ASA5510 firewall and we terminated 50Mbps leased line into that firewall.We tested the Internet line by directly connecting to my laptop, got 49Mbps download speed and 40Mbps upload speed.After that we connected my laptop t...
Hi ALL,We recently had a VPN setup between CompanyA and CompanyBWe’ve had a bit of a shakeup of development servers and the IP address that was configured for the tunnel has changed.Because we can have multiple IP’s that are now initiating requests w...
Hi allPlease se attached drawing hope you understand it.I have a FrontEnd Firewall (ASA 5510). Outside Interface on this firewall is connected to ISP edge router with a /30 network in between.The FrontEnd Firewalls Inside interface is in a /28 networ...
I am having an issue and hopefully someone can help. I have a cisco ASA 5510 that acts as our VPN endpoint. We also have a Juniper firewall that acts as our gateway.When a client connects to (VPN 192.168.15.0 subnet) and tries to access our internal ...
Hi We have a 6513 cisco FW with 2 FWSM Active /Standby Failover , When The primery module is in active state the users sessions is suddenly disconnected while the ping is OK (no request time packet ) now we have to work with only one module , what s...
