Network Security

Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

“Join

 
Labels

Forum Posts

Resolved! New DMZ in FWSM

Hi Freinds,we have two FWSMs on 6509 boxes, inside secuirty level is 100, outside is zero one dmz has security level  zero i want to create another dmz ..could someone explain me the steps to create dmz in FWSM i am not expert on FWSM also the new DM...

                   I am new to the world of ASA's and I am trying to figure out when I do a sh asp drop I get this output Frame drop:  Invalid UDP Length (invalid-udp-length)                                      1  Flow is denied by configured rule (...

bryanrobh by Level 1
  • 2831 Views
  • 6 replies
  • 0 Helpful votes

In  ASA transparent mode, Why it is necessary to keep management ip in the same subnet to that of connected network?what if I keep management ip in diffrent subnet than that of connected network?If I do so does the traffic move through the asa and wh...

vijay1926 by Level 1
  • 1607 Views
  • 5 replies
  • 0 Helpful votes

Hello,I know that the Cisco ASA Transparent Mode implementation requires a management IP Address in order to pass traffic:"For IPv4, a management IP address is required for both management traffic and for traffic to passthrough the adaptive security ...

phmazzoni by Level 1
  • 14980 Views
  • 14 replies
  • 0 Helpful votes

i am pix-515e is running 100% right now.  can you someone please help me? i already disabled dns, netbios h.323 ras on the global-policy. however, the cpu still at 100%fw1# show proc cpu-usage sorted non-zeroPC         Thread       5Sec     1Min     ...

matt0424 by Level 1
  • 430 Views
  • 1 replies
  • 0 Helpful votes

In a pre-8.3 ASA, is it possible for both regular dynamic NAT and policy dynamic NAT to share a single global address?I see two configuration possibilities, but I am not sure if either of them would work.1. Two nat statements share an ID and therefor...

Hi Everyone,I am studying about VPN these days.I did sh crypto isakmp sa   Active SA: 8    Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)Total IKE SA: 81   IKE Peer: 198.x    Type    : user            Role    : responder    R...

mahesh18 by Level 6
  • 1537 Views
  • 8 replies
  • 0 Helpful votes

hiI'm making some major changes to the config on an active/standby asa this evening and am planning the roll back in case things go bad.I'm planning to wr mem the config and then 'no failover' on the Active asaTHen make the changes.If all goes well, ...

philbe by Level 1
  • 5989 Views
  • 3 replies
  • 0 Helpful votes

I'm trying to configure static PAT for a Linux SSH server on my network.  The tricky part is that I'm trying to map port 21 from the outside to port 22 on the inside (because port 22 is blocked on my work network).I've tried the following but it does...

mtehonica by Level 5
  • 788 Views
  • 3 replies
  • 0 Helpful votes
Review Cisco Networking for a $25 gift card