Network Security

Resolved! ASA 5515-X Series IPS Model

Hi, I am very much confused on which IPS model is included on ASA 5515 X series, part no. ASA5515-IPS-K9. I guess they include AIP SSC 5. I am looking for AIP-SSM-10 or AIP-SSM-20 feature. Can we get this kind of feature by adding licence or not on t...

IPsec tunnel without a private network

I'm trying to achieve a site-to-site ipsec tunnel to a Cisco ASA 5520. Most examples feature the ASA with a public interface that terminates the tuennel and a private network on another interface that the tunnel interacts with. Where my scenario di...

Resolved! Portforwarding in Pix 501

Hello i'm having a problem portforwarding/redirection for the pix 501I'm trying to open the ports 49003 and 40085 in order to view our dvr remotely and i'm not exactly sure how to it.

Nat Question: Is this doable?

Here is the scenarion:- would like to route any internal traffic thats SMTP based only to internal email server ( x 2 ) - The default gateway is already set on the email server to go out the outside interfaceCan this be done on an ASA, I am thinking ...

Resolved! How to config firewall if accessing from dmz to inside lan

Hi everyone, Hope you can help on this.We have a ASA with IOS 8.44. We just configured a dmz zone. Now we try to access a share of a windows server in INSIDE interface from another windows server in dmz, So on the server in DMZ, I will type \\INSIDE...

PCOIP perormance through ASA

Has anyone experienced a slowdown in VMWare (v5) VDI with PCOIP screen refresh rates when the traffic goes through a Cisco ASA firewall (version 7.? - I'm not at work as this question came to mind.) Any special commands one might be able to put in p...

nat (dmz, any) problem 8.4(2)

Hello, Something strange with nat command the following nat command excellent works on ASA 8.4(2) but fails on ASA 8.4(4):nat (dmz,any) source static dmz_srv pub_srvI perform clear xlate, shutdown interface dmz but with no success. p.s. i have cha...

How to verify if CG-NMS is enabled on ASA5520

Hi, anyone can tell me how do I verify if CG-NMS is enabled on ASA5520. I just need to know if it's enable/install to be enabled and used?Cisco Adaptive Security Appliance Software Version 8.0(5)28Device Manager Version 6.1(5)51Thanks in advance.

Cisco 5510 ASA cannot create sub interfaces for intervlan routing

Hi Everyone, I am trying to setup intervlan routing with a Cisco ASA 5510 and two 2960-S switches. The 5510 currently is using ASA Version 7.0(2) and has a base license. I tried to create a sub interface today based on some info I found regarding...

How to be Good with ASA?

Hi All,I am quit experienced in Routing and Switching but new to ASA, I want to be real good with ASA and after that I want to write the Exam for Firewall. Please suggest me which way should I follow to get the full and practical knowledge about ASA,...

Resolved! asa configuration with dmz

I have ASA Version 8.0(5) and its configure nat-controlBut sometimes i confuse with the a lot of infomacion of how configure a dmz that i found on the web.So i wrote the configuracion i want to use, and i really appreciate your advise. for examp...

Resolved! ASDM Site to Site VPN

Hi everyone,On ASDM i see that ASA has site to site VPN.When i click on it it showsThen below it has Enable interface for IPSEC accessThen there it has interface which goes to ISP and it has check mark on it.Then under connection profileIt has same...

Product question

Hi there, We have FWSM modules on Internet Edge 6500s. We have to replace them within a year as FWSM is soon EOL. We want to be able to replace them with ASA module or ASA Firewall. We also would like to have IPS on internet edge. We have an ASA...

Zero Downtime Upgrade to 8.4(5) Does NOT work

I'm working this in a lab for now, but I am attempting to upgrade from 8.2(5.26) to 8.4(5) on a failover pair of 5510s and have encountered an issue with the zero downtime upgrade process.The whole thing appears to be very simple. Upload the images ...

unable to ping the Untrust interface of ASA from trust network.

Hi,Is there any way I can ping the untrust interface of a Cisco ASA from my trust network? I am trying some options and unable to get this cracking.Is this something that will not work?Regards,Nikhil

Network Security

Forum Posts

Resolved! ASA 5515-X Series IPS Model

IPsec tunnel without a private network

Resolved! Portforwarding in Pix 501

Nat Question: Is this doable?

Resolved! How to config firewall if accessing from dmz to inside lan

PCOIP perormance through ASA

nat (dmz, any) problem 8.4(2)

How to verify if CG-NMS is enabled on ASA5520

Cisco 5510 ASA cannot create sub interfaces for intervlan routing

How to be Good with ASA?

Resolved! asa configuration with dmz

Resolved! ASDM Site to Site VPN

Product question

Zero Downtime Upgrade to 8.4(5) Does NOT work

unable to ping the Untrust interface of ASA from trust network.

FMC 7.4 and multi-instance FPR3130 chassis upgrades

Announcing the release of Firewall Migration Tool Version 7.7.10

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Firepower 2130 -how to resolve plugin 70658 SSH Server CBC Mode Cipher

Yubikey for authentication to protected applications on FTD

CSF 1210 CE FTD Event viewer problem

cFMC and event logging - Cannot change timerange

Application PBR in FDM

SSH with X509v3 certificates

FPR‑4145 EOL/EOS ?