Network Security

Resolved! Layer 7 HTTP Policy Map

Hi Everyone,I have this Layer 7 Policy Map which i config using ASDM under inspectspolicy-map type inspect http test4 parameters protocol-violation action drop-connection log class _default_GoToMyPC-tunnel drop-connec...

ACL remarks arent migrated from 8.2.5 to 8.3.1

None of my ACL remarks are migrated when going to 8.3.1 and I don't see any error messages telling me why. Does anyone have any ideas?

Resolved! ASA 5515 cannot open http to ASDM from inside due to ACL

Hi All,I have problem accessing to ASDM via http from inside due to ACL. Please help to check what i was missing here. Below is the debug%ASA-3-710003: TCP access denied by ACL from 10.10.11.68/49282 to inside:10.10.11.1/80%ASA-7-710005: TCP request ...

Allow management from outside

Hi All,I would like to temporarily allow asdm managmeent from an external network while I change some IPs for my site-to-site VPN. I've tried allowing 0.0.0.0/0.0.0.0, but that doesn't work. When I try to enable the management feature on the outsid...

Resolved! Site-To-Site VPN

Hello everyone,We need some with site to site vpn from our current location to another customer’s sitewe configured both sites ASA firewalls and see traffic in the logs, not able to connect - maybe we missed something, we need your helpSending both A...

Resolved! Performing Discovery Policy on Device in CSM

Hi Everyone,I added device to CSM ASA in mutli context mode.I read that if i you do discovery policy on device already in network it will copy all the running config from device to CSM Need to know if it is safe on ASA which is in production and...

Resolved! Need Help Nat 0 for ASA 5510 8.4(5)

HelloMost of my experience was with Pix, then we got a few ASA 5505 pre- IOS 8.3 so we still used the NAT0 access list for site to site VPN.I am having trouble understanding the Twice NAT / Identity NAT and cant see how to use it with an access-list ...

interface allocation in ASA cluster multimode

Hi All,Could someone help this please?In ASA cluster multimode ver 9.0, do the cluster control links need to be allocated per context or do they just require in system context? Regards,TaoLao

Resolved! C65K ASA module - syn cookie & ASAx clustering (9.x)

Hi,A couple of questions: I want to move syn cookie protection from ACE-modules to ASA modules in a data center setup. And I want to set a max embryonic conns per server/IP behind the firewall f.ex 512/serverAcc to the ASA conf.guide 8.5 you can make...

Changing ASA to multiple mode

I was curious as when configuring an ASA to be multiple context mode, what happens to the existing configuration on the ASA? I am more concerned with the managament access configuration. Will that config still be present in the default context?Than...

ASA 5505 Traceroute Problem

Problem: Traceroutes return all ***'s after default gateway IP until they complete. Logging onto an wireless access-point not behind the ASA has the traceroutes completing as expected with each hop showing IP and response. I am testing from a linu...

Resolved! nat between inside & outside

Hi,We have an ASA connected to an external switch connecting two different networks. I have query if we need to put any kind of nat statement for traffic between internal & external network. The brief network flow is ;User Network > Cisco 3560 > ASA ...

Migrating from 5520 to 5525X

Hi Guys,Currently we have a Cisco 5520 ASA running 8.2.5 IOS and we want to upgrade to the new 5525-X ASA. We only have 512Mb RAM in our current ASA.I've been reading alot of documentation on how to migrate from the 5520 to 5525-X but what I gather i...

Resolved! Identifying Manual NAT in ASDM

Hi Everyone,Below is the screenshot from Cisco LEarning Website for ASA Practice test.Correct answer is Manual NAT polices .Need to know what should i look for in ASDM that will tell me it is Manual NAT?RegardsMAheshMessage was edited by: mahesh p...

Resolved! Example of Manual NAT to implement NAT exemption

Hi Everyone,Below is from Cisco LEarning Network siteReferring to the Cisco ASA NAT configuration below object network one subnet 10.1.1.0 255.255.255.0!object network two subnet 192.168.1.0 255.255.255.0!nat (inside,outside) source static one one...

Network Security

Forum Posts

Resolved! Layer 7 HTTP Policy Map

ACL remarks arent migrated from 8.2.5 to 8.3.1

Resolved! ASA 5515 cannot open http to ASDM from inside due to ACL

Allow management from outside

Resolved! Site-To-Site VPN

Resolved! Performing Discovery Policy on Device in CSM

Resolved! Need Help Nat 0 for ASA 5510 8.4(5)

interface allocation in ASA cluster multimode

Resolved! C65K ASA module - syn cookie & ASAx clustering (9.x)

Changing ASA to multiple mode

ASA 5505 Traceroute Problem

Resolved! nat between inside & outside

Migrating from 5520 to 5525X

Resolved! Identifying Manual NAT in ASDM

Resolved! Example of Manual NAT to implement NAT exemption

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

Search or Filter for an IP in the FMC policy with API

firepower SSL policy cipher suite for default action

compartilhar internet com VLANS firepower asa

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

How to Specify a PAC File on FMC Policy for Secure Client

FMC 46k HA - after rebuild HA Secondary doesn't register Chassis

FTD not receiving SGT inline

Help setting up FTDv in Azure

How to configure Port Forwarding on FTD

Compatibility matrix for FMC and SFR