Network Security

Resolved! VPN client Secure Routes

Hi Everyone,When i use Full VPN tunnel on RA VPN.On client PC if we click on statusstatisticssecure routeit shows below entries Network Mask 0.0.0.0 0.0.0.0Need to know does this mean that RA VPN connection can come from any IP address and ...

CLI search for which ports are open

I have a question in reguards to CLI. Is there a way to do a search on a service much like in ASDM for what access rules would include a particular port OR IP including "any" rules? ASDM is able to do this search and I find it saves a lot of time w...

Connecting Cisco ASA TenGig to Nexus 7000

I am attempting to connect an ASA 5585 TenGig to a Nexus 7000 F2 TenGig port. I am seeing the error message Transceiver validation failed when I insert the SFP into the port. I know that the error is removed when I enter the command switchport mode...

Cisco ASA 5505 SecPlus + Sipgate issues

Hello,we have a new ASA and want wo communicate via some Cisco SPA509G phones over sipgate.Following Problem: whitout STUN activated in the phones i get the following error in the ASA Log:4 Jun 14 2010 07:00:37 507003 192.168.100.67 50...

Resolved! ASA 5520 - Deny a range of IPs

Hello, This should be a simple question but I wanted to verify first before I made the changes on the ASA. I'm trying to deny the following range or IPs (10.2.1.201-10.2.1.206) from accessing the Internet. So, I created teh following acl:access-list ...

Resolved! ASA 9.x NAT issue

So I'm trying to do a simple test in a lab environment but can't seem to understand why the syntax for NAT statements is not working in 9.x. Here is an example:ASA: outside ip 99.99.99.99/29 inside ip 192.168.4.1/24NAT outside ip 99.99.99.100 to ...

Resolved! Unable to see logs while using split tunnel for RA

hi everyone,I have config RA VPN at my home lab using split tunnel.I can connect fine and able to browse the internet.When i go to internet sites i do not see logs generated on the VPN ASA?Need to understand whats the reason behind this?ASA1# sh co...

Default cipher suite used by ASA for SSH?

By default ASA used which encryption algorithm i.e. cipher suite for SSH?Thanxs

Problem with reflexive ACLs

Hello,I've created a reflexive ACL to allow IP SLA flows between two routers. Looking at the ACL counters, none of the outbound or inbound IP SLA permit statements are incrementing. Looking at the logs, I can see that my IP SLA return traffic is be...

Resolved! Certificate validation Failure please help urgent :(

Hello All i need some urgent attention please. suddenly i am unable to access my ASA firewall i am not sure why ? I tried admin user and other user i have created before i have alos installed ASDM on new system still same Error . also i am able to lo...

Resolved! Overlaping Static NAT Rule

Hello All . I have an issue while creating NAT rule i am having the Error Overlaping Static NAT Rule Here is the details I have already configured static NAT for RDP 3389 Traffic to my host 192.168.1.128 which is working fine. (so i can RDP from outs...

Resolved! Edit banner SSH-2.0-Cisco-1.25

Hello, Is possible to edit the default message SSH-2.0-Cisco-1.25 ??That message is the response when ssh is enabled on a cisco device router/switch/Regards

type of asa to ensure our dns server??

Hi to allI've a problem to ensure my public dns server, this server is inside my lan and exposed to internet, whit actual firewall we have a lot of problem of dns flooding or dos attack, in fact when we open dns port and route traffic to dns server ...

model of asa for response rate limit

Hi , i'm new , just registeredI need to know what kind of cisco asa i should buy for my company, i need to use response rate limit , for limit dns requestes on my dns server.If you' can helm me, i'll be very gratefull..

[SOLVED]Failure of the ZBF migration from cisco 2811 ios 12.4/K9 to 1941 ios 15/k9

Hello to everyone,I write because I have decided to pass from a cisco 2811 with ios 12.4/k9 to a cisco 1941 ios 15/k9, migrating configuration I have a problem with the ZBF.I do not know if it's a problem of policy or differences between ios. Could s...

Network Security

Forum Posts

Resolved! VPN client Secure Routes

CLI search for which ports are open

Connecting Cisco ASA TenGig to Nexus 7000

Cisco ASA 5505 SecPlus + Sipgate issues

Resolved! ASA 5520 - Deny a range of IPs

Resolved! ASA 9.x NAT issue

Resolved! Unable to see logs while using split tunnel for RA

Default cipher suite used by ASA for SSH?

Problem with reflexive ACLs

Resolved! Certificate validation Failure please help urgent :(

Resolved! Overlaping Static NAT Rule

Resolved! Edit banner SSH-2.0-Cisco-1.25

type of asa to ensure our dns server??

model of asa for response rate limit

[SOLVED]Failure of the ZBF migration from cisco 2811 ios 12.4/K9 to 1941 ios 15/k9

pxGrid session subscription missing radius accounting session Id

Model Migration - 4110 Native to 4225 Instance S2S VPN Configs

ASA upgrade procedure on Hyper-V

Announcing the release of Firewall Migration Tool Version 7.7.10

CSCvx25052 - DOC: FTD Syslog messages 43000x missing from FMC

Upgrade 7.6 -> 7.7 stopped media and ftp, is inspection the culprit ??

SFDataCorrelator down on Standby FMC

Recovery of "admin" password in CIsco ASAv runnin on AWS

Cisco FMC Access control policy under default

AnyConnect MAC OSX exclude/include DNS not working