Network Security

ASA - FWSM OSPF Issues

Hi All,,We are having some issues with OSPF interoperability between a FWSM and ASA 5540. Both devices are running OSPF - if a network outage occurrs in can take over an hour once the network has recovered for the OPSF neighbour to...

Resolved! How to Allow Traffic from DMZ to Internet and Block trafic from DMZ to Internal

Dear Support,I have an ASA 5520 with the below configGi0/0: outside (Internet)Gi0/1: inside (Internal users)Gi0/2: DMZ (web servers, ftp, Mail etc..)I have a SMTP relay deployed on the DMZ for mailing. I have also a mail servers installed in the inte...

Resolved! Replacing PIX with ASA issue

HiI am experiencing issues at a site where I need to replace an ageing PIX 506e with an ASA 5505.The current setup looks like this: The PIX is used for site-to-site VPN connection via the WAN 2 link. The WAN 1 link is used for gene...

Resolved! IDSM2 License Installation Error

Hello,I am facing a problem applying licenses on 2 different WS-SVC-IDSM2-BUN (installed on core switches). I keep getting the attached error.I tried using CLI & GUI, same thing. I even contacted cisco licensing and they sent me the license files the...

ASA 5510 cannot connect to Microsoft IAS

I'm at a total loss here. I am transitioning from a Microsoft ISA server to a Cisco ASA 5510. So far so good, until it comes to getting AAA functioning properly. I have a Microsoft IAS server that is functioning properly, however when I try to test i...

No Response From ASA5510

We have an ASA5510 and I am getting absolutely no response from the console port. Not even a blip when I turn it on. If I leave the compact flash in the internal bay, I get Green Power, Amber Status, Amber Active and Green VPN when I start it up. ...

How to Manage the Traffic between the Firewall & Switch ?

Hi,I have a setup where the Client Network is connected to a Firewall and it is being managed by the client. That firewall is connected to my Network also.As it is connected to my network also i don't have any control to view the Traffic hitting my n...

Resolved! Monitoring nat transaltion in ASA adn CRS

Hi, I'm new to the forum, I work for an ISP and need to know the command to show me the NAT translations of ASA and also in a CRS. On the other hand I'm trying to plot this on a cacti and also need the OID.I appreciate any help.

Can Cisco ASA restrict the download traffic use the tcp port 80?

Hello Sir,Does anyone know how to restrict the download traffic use port 80 at Cisco ASA Firewall?Thanks ~

Inbound UDP connection 684

Hello,Trying a simple Easy VPN connection and getting the following in the error logs:Built inbound UDP connection 684 for outside:xx.xx.xx.xx/1106 (xx.xx.xx.xx/1106) to identity:xx.xx.xx.xx/500 (xx.xx.xx.xx/500)Does anyone know of the cause of such ...

ASA 5505, Service Monitoring?

I want to be able to gather some time metrics based on source IP, and destination port. Is it possiable to track how much time a user spends using a service based on it's port number. I have figured out how to capture all the data, and I can then ...

Cisco ASA 5505 Transparent mode and Management access

I have a need to manage the 5505 outside of the 2 interfaces however I see it documented that Management access is only via the data path interface. This won't work for me because there will be NO management access on the data network being bridged t...

command authorisation in 8.4 for object network

Hi guys,I just tried to do a quick privilege level setup for a user to limit access to asa. User should be able to add nat's to configuration. ASA 8.4 is in question and trying the following does not seem to work:privilege configure level 3 command o...

Cisco ASA error message

Dear All,My customer's ASA that show an error message "Warning: unexpected configuration tag 'external-portal' (line=213,column=5,position=8842)"The ASA 5550 version is 8.2(5)26.I do not know if this is what caused.Can someone help me?ThanksBilly

ASA shun hosts and QoS

Hi, I'm having trouble configuring Threat-detection and QoS polices at the same time.The problem is that if I have QoS rules enabled, this is policing a traffic defined by ACLs, I can't enable at the same time the threat-detection feature "Shun hosts...

Network Security

Forum Posts

ASA - FWSM OSPF Issues

Resolved! How to Allow Traffic from DMZ to Internet and Block trafic from DMZ to Internal

Resolved! Replacing PIX with ASA issue

Resolved! IDSM2 License Installation Error

ASA 5510 cannot connect to Microsoft IAS

No Response From ASA5510

How to Manage the Traffic between the Firewall & Switch ?

Resolved! Monitoring nat transaltion in ASA adn CRS

Can Cisco ASA restrict the download traffic use the tcp port 80?

Inbound UDP connection 684

ASA 5505, Service Monitoring?

Cisco ASA 5505 Transparent mode and Management access

command authorisation in 8.4 for object network

Cisco ASA error message

ASA shun hosts and QoS

Hearty congratulations to the December Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

Packet tracer says NAT pool exhausted

Cisco FTD send RST when dropped by Snort / IPS

Firepower 7.2.1 - Issue with the FlexConfig Text object override

Re: FMC is disabled in System>Health>Monitor

Private VLAN's interaction with ESXi and firewall

vFMC setting with bugsssss

FMCv upgrade path from v7.1.0

FMC new local admin cannot console or SSH

FMC API - can not associate a prefilter policy to an access policy

What is the result of placing, on ASA outside int, ACL...