Network Security

Issue with echo_request translation in ASA 8.4(4)

Dear colleagues,I coudn't create nat-rule for passing icmp echo-requests from user's PC placed in inside network toward public ip addresses into public networks.Task:echo-request packet from user's PC with private source-address should pass to ouside...

Resolved! URLs filtering problemes ASA 5510

hi everybody i use ASA 5510 and i want to block some urls :192.168.2.70 to 79 allow every thing 192.168.2.80 to 89 : block facebook , myspace, twiter, 192.168.2.90 to 99 : block facebook , myspace, twiter, youtube , dailymotion 192.168.2.100 to 19...

Unable to setup a between windows 2008 server r2 and cisco asa 5505?

Hi..I have assigned a task to configure a vpn between windows 2008 server and cisco asa 5505, what kind of vpn should i go with as the windows 2008 server r2 is on cloud and is it possible to configure site-to-site vpn for this network senario or not...

Resolved! Cisco ASA5510-SSL250-K9 (ASA 5510 VPN Edition w/ 250 SSL User License, 3DES/AES)

Hi!A Cisco ASA5510-SSL250-K9 (ASA 5510 VPN Edition w/ 250 SSL User License, 3DES/AES) can be used for up to 250 IPSec or SSL VPN connections.Please clarify if this version has Active/Active or Active/Standby features.If two ASA boxes are to be deploy...

Help me! Problem with Pix 501

I'm using Pix 501 with firmware: Version 6.3(3)I have problem with Pix 501:+ transfer rate data between interface outside and inside very slow, even between 2 interface inside.+ I have test file transfer between 2 PC connect via interface inside. + R...

Resolved! Access-group command on ASA

hi all,Need to confirm if this is right way to use ACL to block specfic user from accessing wwwConfig 1access-list BLOCK extended deny tcp host 192.168.1.1 any eq www logaccess-group BLOCK in interface insideHere IP 192.168.1.1 is used as source w...

Resolved! SSH timeout not available while on ssh connection

Hi Everyone,I found that ssh timeout command is only available when you console to ASA.It is not available when you do the ssh connection to ASA is this default behaviour? or any reason behind it?ThanksMahesh

Resolved! Hit count in ASA

Hi everyone,Need to confirm how hit count is incremented in ASA.I am pinging IP from PC connected to ASA .PC has send 4 packetsHere is ASA infociscoasa# sh access-li$access-list cached ACL log ...

ASAs / FWSMs Sharing Failover and State VLANs

Are there any gotchas in having multiple ASA or FWSM failover pairs all sharing the same respective Failover and State VLANs?

Resolved! Does ASA 5520 do layer 7 firewall

Hi everyone,Need to know if ASA 5520 does Layer 7 firewall or not?thanksMahesh

Cisco ASDM - Allow Ports

We recently entered into a contract with a new payment processor. The credit card machine communicated via telephone line or Internet. We have a Cisco ASA 5505 security appliance. Using the Cisco ASDM control interface, I would like to set up perm...

ASA - DHCP and Static IP on the Outside?

Evening All!A quick puzzler that I'd appreciate your thoughts on...I used to have my Internet connection setup like this:ISP - 877 - ASA - InsideThe ISP would issue a DHCP address to the 877 on one interface and it would have the static subnet my ISP...

Understanding IPS log (sig:16297-Worm Activity)

Hi,We are monitoring intrusions for a customer using SIEM and we got an alert based on the below IPS logs.It would be great if someone helps clarify my doubts in analyzing this and similar IPS logs.*********** Cisco IDS 08 Oct 2012 08:50:36 id=...

Resolved! ASA5505 port 3306 request discarded

ASA5505 port 3306I have been fighting for days to open the port 3306 on my appliance, I have read carefully all the forums and no success.I allways get the message :7Oct 21 201217:29:3290.27.181.12054655212.147.49.183306TCP request discarded from 90....

Proxy Bypass ASA 5550

I would like to get some more information on how the Proxy Bypass works. I have an internal site that the users need to get to and needs to bypass the proxy to work correctly. I found some documentation but it is some what sparse. The site URL loo...

Network Security

Forum Posts

Issue with echo_request translation in ASA 8.4(4)

Resolved! URLs filtering problemes ASA 5510

Unable to setup a between windows 2008 server r2 and cisco asa 5505?

Resolved! Cisco ASA5510-SSL250-K9 (ASA 5510 VPN Edition w/ 250 SSL User License, 3DES/AES)

Help me! Problem with Pix 501

Resolved! Access-group command on ASA

Resolved! SSH timeout not available while on ssh connection

Resolved! Hit count in ASA

ASAs / FWSMs Sharing Failover and State VLANs

Resolved! Does ASA 5520 do layer 7 firewall

Cisco ASDM - Allow Ports

ASA - DHCP and Static IP on the Outside?

Understanding IPS log (sig:16297-Worm Activity)

Resolved! ASA5505 port 3306 request discarded

Proxy Bypass ASA 5550

Hearty congratulations to the December Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

Cisco FTD send RST when dropped by Snort / IPS

Firepower 7.2.1 - Issue with the FlexConfig Text object override

Re: FMC is disabled in System>Health>Monitor

Private VLAN's interaction with ESXi and firewall

Packets appearing in ASP DROP?

vFMC setting with bugsssss

FMCv upgrade path from v7.1.0

FMC new local admin cannot console or SSH

FMC API - can not associate a prefilter policy to an access policy

What is the result of placing, on ASA outside int, ACL...