Network Security

ASA5505 and Nat

Okay so here is my network setup. I have a 1 ASA5505 setup at a remote location. My internet/voice provider has a router at that location also to route traffic over the MPLS for our location to location traffic, and to route traffic to the internet. ...

Can a host NOT be sent to the web-cache?

Hello!I am attempting to allow a single host to NOT be sent to the Ironport. It's a Linux box that needs to get to download.opensuse.org. I've tried adding an access list for that host, to an inet host via any IP. The traffice still goes to the Ironp...

Resolved! Site-to-Site VPN between ASA & PIX

Hi everyone,If this has been posted before, which it probably has, I apologize in advance.Basically, I have to configure a VPN between our NY ASA and a PIX we shipped to our LA office. The PIX is replacing an old Cisco router. The ASA is our main dev...

Resolved! Can I disable "inspect sqlnet?"

In a recent Cisco Security Advisory (Advisory ID: cisco-sa-20131009-asa) there is a "SQL*Net Inspection Engine Denial of Service Vulnerability" identified. I plan to follow the upgrade process to resolve this, however, I will not be able to perform ...

Resolved! Clarification on ASA

Hi, Just a clarification on Proxy ARP on ASAs. Scenario: Web Server 10.1.1.1 -- in ---- ASA ---- out ----- InternetLet's say the WWW server has real IP 10.1.1.1 and static NAT 200.1.1.2ASA's outside IP is 200.1.1.1When traffic comes from the Interne...

IPS Signature updates

Hi all!I have deployed an ASA5512-IPS-K9 unit that has the following 2 licenses installed:Cisco ASA 5512 SW License Security PlusCisco ASA 5512 SW License IPS SSP LicenseAll is working out fine except for the IPS SW module.When viewing the IPS using ...

Unable to use SDM

Hello everyone,I am trying to use the Cisco SDM version 2.5. I installed the software on a PC running Windows XP service pack 3. When I launch the application, I get the screen shown below. I have no idea what I may have done wrongly. Please help...

Cisco VPN AnyConnect SQL "Could Not Connect to Database" Error

Here is the situation. I have the VPN anyconnect client connected and can access other resources like pinging the hosts, windows shares, rdp to this sql server. I just can't sql connect from an emr software (emds) into the 192.168.1.15 server ru...

ASA 5510 FireWall Problem

Hi AllAfter some advise and directionOur ASA firewall using ASA version 8.4 has recently started presenting us with a problem to one external websitecalled http://partners.highnet.com/login/ ip address 62.233.82.181.Our firewall is letting everythin...

ASA 5510 Dual ISP, one routed one NAT

Hello,I am trying to figure out the proper configuration for ISP failover on my ASA 5510, here is my senario:Currently our primary ISP link is being provided by a consotium for schools so we have no public ip address on the outside interface of the A...

Avaya VPN Phone Won't Connect to Call Server

We have dozens of Avaya VPN phones used throughout the country in home offices. They are configured to connect to the VPN tunnel on our ASA 5510. Once connected to the VPN they will then connect to our Avaya phone server.We have one user that can con...

ASA 8.2 with overlapping VPN subnets

Hello,We have servers in the datacenter to monitor several customer ASA devices over VPN tunnel. The issue is some customers overlap with each other. For example, 192.168.1.0/24 may be used as remote subnet for 2-3 customers. The monitored devices ar...

Resolved! CISCO asa 5510 inside interface cannot access webserver

The above is a drawing of the network. I want a PC on 10.50.1.0 to access the webserver at 10.10.10.70. The PC and webserver are on default vlans of their switches.I believe I need a static NAT of some sort but all i've tried doesnt work.Here's con...

Resolved! Upgrading ASA software version, will it brake it license?

Hi everyone,I have to set up an active/passive failover pair with two ASA 5510. Both have the same hardware and security plus license, but one is version 8.4 (5) and the other is 8.2 (4). I was wondering if copying BIN file from higher version ASA to...

ASA - Disable automatic failover

Hey,I want to use two ASA's as an active/standy cluster in two datacenters. To avoid split-brains I want failover/replication but only switch to the standby unit by hand. My first thought was to disable monitoring on all IF's. Would this be enough?Th...

Network Security

Forum Posts

ASA5505 and Nat

Can a host NOT be sent to the web-cache?

Resolved! Site-to-Site VPN between ASA & PIX

Resolved! Can I disable "inspect sqlnet?"

Resolved! Clarification on ASA

IPS Signature updates

Unable to use SDM

Cisco VPN AnyConnect SQL "Could Not Connect to Database" Error

ASA 5510 FireWall Problem

ASA 5510 Dual ISP, one routed one NAT

Avaya VPN Phone Won't Connect to Call Server

ASA 8.2 with overlapping VPN subnets

Resolved! CISCO asa 5510 inside interface cannot access webserver

Resolved! Upgrading ASA software version, will it brake it license?

ASA - Disable automatic failover

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Relocating 4110 FTD

SIP traffic not functioning as expected following migration

How to Modify Content-Security-Policy (CSP) for FTD Remote Access VPN

IPsec session (Phase 2) hang. Cisco Secure Firewall (Firepower)

Change Syslog Port Cisco FirePower Management Center

Fire Power 1010 orange Status light blinking

ASA 5525-x with Firepower IPS + some features issue

FMC Enable SSL Decryption Impact and Creating Key and Certificate

Access List Configuration on ASA

Expired Web server certificate preventing upgrade