Hi, this is probably a simple NAT question but I can't find answer.From my inside interface with security level 100, I can access servers on the dmz interface with security level 50.But if I publish a server on the dmz interface to outside, i can no ...
I config static pat at asa 5520 but static pat unreachable ,why?ciscoasa# show run: Saved:ASA Version 8.4(2) !!interface GigabitEthernet0nameif Insidesecurity-level 100ip address 12.1.1.2 255.255.255.0 !interface GigabitEthernet1nameif Outsidesecurit...
We have a site that is experiencing SIP Protocol Violation errors from the Zone-Based Firewall Policy configuration. Here is a little bit of info about the site design and some logs desplaying this particular error:-remote site connected to central s...
Hi,I have setup a site to site VPN between Cisco asa5510 and Sonicwall tz200, the tunnel established successfully, but there is no traffice crossing tunnel. everythi is ok on the Sonicwall side, but asa is somehow blocking all the inbound a...
Dear All,I have a doubt regarding Cisco ASA 5500-X Series Firewall.Can we Have CWS or AVC/Web & IPS on the Same Appliance 5500-X Series Firewall ?Regarrds,Sahib
Hi Experts,Given a scenario where I have a hosts say 10.1.1.0/24 on the inside interface of the ASA (code 8.3 above), and a DMZ proxy with IP say 192.168.1.1 and an outside interface as usual, if I create the below manual nat statement, will traffic ...
HelloI am working on an issue related to ICMP Fragmentation needed but DF set. I have this topology:Router B----GRE/IPSEC tunnel-----Router A--------Core SW-----------ASA 5510The problem is that when the GRE tunnel was setup, users coming from router...
Hi all - hope this is the right place to ask this question-I'm having trouble understanding how to configure an ASA 5512X in what should be a really easy way -I simply want the ASA to be a transparent Layer 2 "bump" in a routed lin...
Is there any reason why the ASA will be sending authentication to the secondary ACS server when the primary is still online and active?
Hi,One of my applications makes connections to a webserver, and because of the amount of data transmitted, if too many consecutive requests are sent, we are looked at as a DOS attack. What I am wondering is if there is a way to have a single IP addr...
Is it possible to use a 4255 IPS inline on a 6509 with an FWSM?For example say the FWSM has 20 vlans with servers on them, is it possible to put it inline between the different vlans? Would vlan pairs work for this or vlan groups?
I would like to know if it is possible to configure LOCAL database as the primary login method when the user account is not available in the database it could try authenticating with the Tacacs? if so what is command.This is required on PIX 6.3
Two Questions: One: I need to access a remote ASA, using ASDM (SSL or TLS) from a workstation.How do I make that as secure as possible?Two: If I choose to build an IPSec tunnel between the ASA at the workstartion and the remote ASA in ...
hello,i have router 2801 which is connected to ASA to Outside interface, and have problem with ssh ver 1.sh ssh0.0.0.0 0.0.0.0 Inside0.0.0.0 0.0.0.0 Outside.any suggestions?please-thanks
Hi,i'm new in cisco.I have: object-group network smtphost 192.168.11.13this is mail serverandobject-group network no_smtpno group-object smtpor no host 192.168.11.13but not working:object-group network no_smtp!object-group network smtp host 192.168.1...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
| User | Count |
|---|---|
| 8 | |
| 7 | |
| 6 | |
| 1 | |
| 1 |
