Network Security

Resolved! 5505 and essentials license

I have a 5505 that is on asa code version 8.0(4) and has security plus license. I would like to put the essentials license on it but I have read that the asa needs to be on code version 8.2 or above per this link:https://supportforums.cisco.com/docs/...

Resolved! ZBFW with SIP

Hope this is the right spot for this. I am running an 891W with a ZBFW setup as the CPE, software c890-universalk9-mz.150-1.M4.bin. The issue I am working with is we are using a hosted platform for SIP and trying to register a phone through the SBC. ...

Limiting the amount of traffic from a specific site.

I have a Guest wireless interface that is being overloaded with clients accesing the x.dal.llnw.net sites.(Limeware and other Akimia locations). I do have a traffic policy on the interface limiting traffic to 3mb in/out. Is there a way...

Opening specific ports for video

Hi!I want to open some ports for one specific host on the inside network. I want the host to be able to call out to any host on the internet. What is the easiest way to do this?I have many public IP adresses so the inside host can easily be Natted wi...

Resolved! ACL help

ello All,I've got a problem on a router with CBAC and an ACL on the outside interface. When I apply the Access-group INTERNET I loose DNS access from inside. The DNS server is the router and name servers 8.8.8.8 8.8.8.4Can anyone see what I'm ...

Update IPS Signature

Hi, I have IPS inline with Signature version 547.i want to update this signature and i dont want to affect the running enviroment ( since it is inline)my question is if i upgarde it, will it affect the organization ( i.e may new signature will block ...

How to Permit traffic from Outside to DMZ on ASA 8.4

Hello, everyone, i am writing you for help me.I Have this Topology: R1 is as server and i want to public that server in INTERNET using public IP 7.7.7.7, but i can not do that. I tried to do a NAT but it just translate from DMZ to Outside, however i ...

Resolved! Tool to convert PIX to ASA config

Long ago there was a software tool that would do 90% of the configuration change from a PIX configuration to an ASA configuration.Have a customer that is finally ready to get rid of their 515. Anyone know where it might be?Thanks

How many users does a ASA5505-BUN-K9 support

I know it is a stupid question.I say the answer is ten. That means ten hosts can be behind the firewall and hit the internet. The eleventh doesn't get to go out.I'm being told by a coworker that the "10" in the part number refers to the number of I...

Solution to Prevent the D-DOS Attack

Hello Experts,We have our Production Servers placed at ISP DC where we are using Cisco ASA firewall model 5505 and all the servers placed behind the firewall.The bandwidth we have 100 MBPS and there is no IPS device in between. Since long time, we ha...

Locking down ASA

I am working on locking down the ASA and I am looking for the commands to set the number of failed authentications before it won't accept login attempts from that host. I found a single command to set the max times but what about the max duration or...

Accessing Public NAT address from inside interface

Hi All,The situation is as follows:I have an interface on the my ASA dedicated for unmanged devices that can get to the internet only. no access to any other networks behind the ASA. These users want to use our mail server on the network but they us...

Analysis Engine Crashed

Im looking at the IPS modules at the moment that seem to have an ongoing issue of the Analysis Engine crashing. This runs as a process called sensorApp located in /usr/cids/idsroot/bin/When its originally launched it runs without problem using a -z s...

Solution to Prevent the DOS Attack

Hello Experts,We have our Production Servers placed at ISP DC where we are using Cisco ASA firewall model 5505 and all the servers placed behind the firewall.The bandwidth we have 100 MBPS and there is no IPS device in between. Since long time, ...

Resolved! ASA 9.1 conn timeout for DNS?

Hi,I recently had a firewall that wasn't passing traffic (ASA 5510 running software version 9.1).It turned out it had 130000 active connections. Doing a "clear conn port 53" dropped the active connection count back to 38k, and the firewall started p...

Network Security

Forum Posts

Resolved! 5505 and essentials license

Resolved! ZBFW with SIP

Limiting the amount of traffic from a specific site.

Opening specific ports for video

Resolved! ACL help

Update IPS Signature

How to Permit traffic from Outside to DMZ on ASA 8.4

Resolved! Tool to convert PIX to ASA config

How many users does a ASA5505-BUN-K9 support

Solution to Prevent the D-DOS Attack

Locking down ASA

Accessing Public NAT address from inside interface

Analysis Engine Crashed

Solution to Prevent the DOS Attack

Resolved! ASA 9.1 conn timeout for DNS?

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

How to Specify a PAC File on FMC Policy for Secure Client

CSCwk14305 - "Unable to unlock or revert SED" observed after rebooting

Assign Multiple IPs to a Single BVI on Cisco FTD in Transparent Mode

configure SNMP inform retry and duration on FMC

How to configure Port Forwarding on FTD

Compatibility matrix for FMC and SFR

Copy configuration from source FMC A to target FMC B / Parallel build

ping is not working

Firepower 1120 ASA ASDM 7.16 BVI Device Communication Issue