Network Security

Resolved! NAT syntax - upgrading to 8.3+

Looking at the changes in NAT syntax after the upgrade.... how would I do the following in 8.3+?1)access-list Encrypt extended permit ip 172.10.35.0 255.255.255.0 172.10.18.0 255.255.255.0 access-list Encrypt extended permit ip 172.10.36.0 255.255.25...

Resolved! ASA5510 - LACP in Transparent Mode

Hello all,I understand that in transparent mode an ASA5510 would only be able to have two interfaces, inside and outside.My question is could one of those logical interfaces be an LACP'd interface, made up of two physical interfaces. Topology below.I...

Resolved! Configure DMZ on an ASA 5510

Good Morning All,I am confiuging a DMZ on my ASA 5510 but I have run out of physical ports, since I have dual Wan ports configured. I plan to implement a DMZ using subinterfaces. I have 2 questions:1) Do I need to configure a Vlan to complete this ...

Resolved! ASA 5510 cannot ping via route inside

Hey Folks,I would appreciate any feedback I can get on this. I recently added a business cable modem to help relieve some of the conjestion I was getting on my T1 for our MPLS network. There was an ASA 5510 collecting dust in a closet here and I th...

DHCP/MAC Reservations

It you are using the ASA as a DHCP server, can you hold each specific ip address that the ASA gives out by the end components mac address?

Firewall not get into monitor mode

I have cisco pix 520 Firewall and I forgot my firewall password but now I want to reset so I have to get into monitor mode but when I press escape key my firewall is not get into monitor mode. so now how can I get into monitor mode or Are there any ...

need to allow public ip owa access to dmz

I have DMZ n/w 192.166.0.0/24on which i have nated on public ipprivate ip : 192.16.0.201 (OWA)public ip : 61.x.x.x.when i try to access owa(public ip ) from dmz it is not allowing , Fromwhat rules i need to set to get work ASA 5510 8.2

Resolved! ASA Implicit Deny

HiIm new to the ASA firewall. With no ACL's configured Im trying to ping from a host in the inside to a host on the outside. Pinging from a level 100 to a level 0. This is permitted and I realize that I would have to create an ACL to permit icmp pin...

Resolved! asa 5510 port e0/3 not showing

Has anyone experienced this I was enabling all the ports for testing on an asa 5510 and once I got to port e0/3 I got this error:ciscoasa(config-if)# int e0/0ciscoasa(config-if)# no shutciscoasa(config-if)# int e0/1ciscoasa(config-if)# no shutciscoas...

many to many PAT

Hi All,Hope you are doing good. I am currently trying to configure PAT on our FWSM. There are a large number of hosts(four private /24 subnets) that need to be patted and they are ending up using all the ports that can be PATted via one ip address. T...

Duplicate SYN attacks from Outside to Outside

Hi Everyone,We have an FTP server that sits in our DMZ. This Server has a DMZ interface and an external interface. When trying to access the server from the internet on its external address i am getting alot of Duplicate SYN attacks. They seem to ...

PAT overriding my Policy NAT

So here is my situation, let's start with the networkI'm working on a cisco ASA 5510, not sure of the OS, but its the pre-8.3 NAT10.0.100.0/24 -> inside network (inside VLAN)192.168.100.0/24 -> What i need to NAT to (several ranges via another device...

ASA 5520 Firewall bypass proxy -Ultrasurf

Hi,I have ASA 5520 firewall with web filtering. I have lots of sites been blocked for security reason, like facebook, prone sites and so on... After blocking those sites i have found out that users being using proxy software i.e. ultrasurf and seen t...

EOS for ASA5500

HiDoes any one advise the current ASA 5510 is going to EOS ?Tks

ASA 5545X and two ISP load balancing

Hello,I have two Internet connections which are connected to two ISR 2951s. Also I have two ASAs 5545-Xs, which I want to use in Active/Active failover mode with multicontext. The question is: how can I configure ASAs to perform ISP load-balancing as...

Network Security

Forum Posts

Resolved! NAT syntax - upgrading to 8.3+

Resolved! ASA5510 - LACP in Transparent Mode

Resolved! Configure DMZ on an ASA 5510

Resolved! ASA 5510 cannot ping via route inside

DHCP/MAC Reservations

Firewall not get into monitor mode

need to allow public ip owa access to dmz

Resolved! ASA Implicit Deny

Resolved! asa 5510 port e0/3 not showing

many to many PAT

Duplicate SYN attacks from Outside to Outside

PAT overriding my Policy NAT

ASA 5520 Firewall bypass proxy -Ultrasurf

EOS for ASA5500

ASA 5545X and two ISP load balancing

Correct way to config two external interfaces on the CSF 1210CE FTD

Secure Firewall 1200 HA topology with 03 ISP link´s and SD-WAN

FMC 7.4.2.1: Missing active sessions in Remote Access VPN dashboard

FTD not recovering RADIUS server down

FMC 7.4.2.1-30 unsets/sets DNS domain-name every day

Cisco firepower 1150 multi ISP and Remote Access VPN

Smart License lost after Powerfail / Reboot

Firepower 1120 has wrong (falcon demo) license active

L-CSF1230-TMC-3Y 's TOP SKU

FMC error has unknown CPU number