Network Security

Mapping public ip's to interfaces

Hi i'm new to the world of asa and i hope that someone can guide me in the right direction.We have a 5510 (7.1) with 4 active interfaces an one wanOur ISP have given us a public ip range. We have set up default route and we have connection to the int...

Limited access over STS Tunnel

Hello Experts,I need some assistance to provide limited access from remote to local machines over STS Tunnel. The STS Tunnel is estlablished between two sites and I want that remote machine can access only few machines with specific ports.Lets say 19...

Resolved! ASA DHCP server question

Can the ASA DHCP server be configured to give out addresses to clients that are in a different subnet from that which is configured on the interface?Connected to my inside interface I have a layer three switch that has two VLAN's configured on it. O...

STS TUNNEL SETUP

Hello Experts,We need to create a STS tunnel with one of our client and they have the load balancer in front of their firewall and two ISP link are terminated on load balancer and load balance internal network is connected with firewall. Firewall int...

Resolved! denied media downloads

Hi everyoneI´m wondering who could explain me how to deny mp3, avi, mp4 or mov file downloads from the prime security module on the ASA-5512CX.All the information I found make reference to the File Filtering Profile.The only options I have by default...

ASA - QoS

Hello all. ASA IOS is v8.22. I have setup overall police (10 down 5 up) on outside interface to match ISP bandwidth (for congestion determination) as well as two rules to put packest into LLQ. First rule is for all traffic to DataCenter and it is...

ASA: two WAN interface, problem with routing

Good day!In my possession Cisco ASA 5515 and three interfaces: LAN 10.1.1.1 (network 10.1.1.0/24)WAN1 1.1.1.130 (network 1.1.1.128/26)WAN2 1.1.2.5 (network 1.1.2.0/24) Now the traffic goes through WAN1 - all web-application in NAT address pool 1.1.1....

gmail on iphones not working even though the pop3 amd imap is allowed in ACLs

hi the mobiles devices are unable to access the gmail on pop3 and imap through wirelesseven though imap and pop3 both are allowedfollwoing is the service-group for allowed protocolsobject-group service allowed_internet service-object icmp service-ob...

Upgrading PIX525 (ver. 6.3.(3)) to ASA 5525X w/IPS (ver. 9.1.(1))

I'm looking for any advice or suggestions on best practice for the task of upgrading from a PIX 525 running 6.3 to an ASA 5525X with IPS, the PIX is setup in active/standby failover and the ASA will be setup the same way. The PIX has been in service ...

FWSM and ASASM OSPF Routing

I know that the FWSM and ASASM both have OSPF as a routing protocol, at least in a limited capability. Do they support VRFs?Thanks,Doug

Cisco ASA training

Hi all,I need to get up to speed on deploying and maintaining a Cisco ASA 5510 for a branch office. What are my options? I've used Trainsignal for self study before along with QA.com for instructor led courses and was happy with both. They both of...

How to Monitor Fragment queue in ASA and FWSM?

fw-asa# sh fragmentInterface: Size: 200, Chain: 24, Timeout: 5, Reassembly: virtual Queue: 0, Assembled: 111311, Fail: 509634, Overflow: 0How to monitor the item "Queue" or "Overflow" in this output?I wish I could get it via SNMP GET.Thank you....

Resolved! Please help !!!

We were running Cisco ASA 5520 version 5.2 at the moment, and now we are upgrading to ASA 5525 X series version 8.6. Below is the sample code that I have attached, could anyone please tell me if I am doing this right? Thank you very much.current vers...

Resolved! ASA GNS3 project working

Hi,Does anyone have a ASA GNS3 working project?I configured one, but i´m not having very sucess in making things work. I´m following Cisco matterials, but very strangly, simple things dont work.So I need to know what the problem is, my instalation of...

Cisco ASA Insert static route on track object failure

Hi,Is there a way to insert a static route when tracking object results in a failure.ip route 1.1.1.1 255.255.255.255 2.2.2.2 track 100track 100 rtr 100 reachabilitysla monitor 100 type echo protocol ipIcmpEcho 3.3.3.3 interface Outside frequency 5sl...

Network Security

Forum Posts

Mapping public ip's to interfaces

Limited access over STS Tunnel

Resolved! ASA DHCP server question

STS TUNNEL SETUP

Resolved! denied media downloads

ASA - QoS

ASA: two WAN interface, problem with routing

gmail on iphones not working even though the pop3 amd imap is allowed in ACLs

Upgrading PIX525 (ver. 6.3.(3)) to ASA 5525X w/IPS (ver. 9.1.(1))

FWSM and ASASM OSPF Routing

Cisco ASA training

How to Monitor Fragment queue in ASA and FWSM?

Resolved! Please help !!!

Resolved! ASA GNS3 project working

Cisco ASA Insert static route on track object failure

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

How to Specify a PAC File on FMC Policy for Secure Client

CSCwk14305 - "Unable to unlock or revert SED" observed after rebooting

Assign Multiple IPs to a Single BVI on Cisco FTD in Transparent Mode

configure SNMP inform retry and duration on FMC

Firepower 1120 ASA ASDM 7.16 BVI Device Communication Issue

Site2site vpn setup on 2110 FTD

Unable to select event > log files in FTD policy

Unable to configure OSPF during ASA to FTD migration

FTD integration with Cdo