Network Security

ASA 5550 Multiple Context - TACACS on Console Port

ASA 5550 running 8.4 (4) 1 - Multiple contexts.I am unable to input any AAA commands on the system area, but am OK on ADMIN, Context 01 & 02 SSH authenticates OK back to TACACS server OK to each context management IP address.I also have OOB access vi...

ASA 5510 and Port Forwarding?

Hi all,This is my first post and I really could do with your help. I have a Cisco ASA 5510 appliance running ASDM 6.3We have a number of public IP addresses associated with our company. In order to utilise the IP addresses effectively I want to use o...

Removing unused objects (Cisco ASA)

Hi,I am about to migrate a lot of Check Point firewalls to Cisco ASA. I am trying to utilize Cisco Security Conversion Tool. The problem with Check Point is that I am getting all the objects from all firewalls from the same CMA. Even with this limita...

Authenticate with Microsoft LDAP

Hi all,I am running ASA ver. 8.2(2) and all users are configured in the ASA. This ASA is uses as a VPN ASA and we are using it for remote access for external users. When a user is logged in, he gets all parameters that are need to continue working f...

Not clear ASA 5515-k9 with Antivirus or not?

Dear All,i would like to use ASA 5515-k9 with Antivirus and antispam but i don't know the part number that support this and how it process .Please help to advice !Best Regards,Rechard

Resolved! How to allow protocol 97 in PIX 515E

What would be the access-list entry to allow protocol 97? I am setting up foreign-anchor controller and need to allow protocol 97.Thanks.

help needed with NAT on ASA 8.4 (x)

inside: security level 100outside: security level 0traffic coming in from any IP address on inside interface & going out on outside interface with destination of 12.1.1.1 should be NAT'ed/PAT'ed to 100.1.1.1 IP address. How do we do it in ASA running...

Resolved! Regular Expression Matching of Custom HTTP Headers - ASA 8.2(4)

I have an application I have to support where there will be two custom HTTP headers inserted into the normal HTTP 1.1 message. Let's call them "X-Header1" and "X-Header2."I want to be able to allow only HTTP traffic that has these two headers (and t...

PIX 506 - Limited Throughput ?

HiI recently found a use for an old PIX 506 that I found in our store cupboard.After doing a 'show ver' I noticed that although the number of internal hosts was unrestricted, the throughout is 'limited'. The outside ethernet is registering as 10/hal...

ASA 8.0 Nat 1 machine to 1 IP, dynamic the rest?

On8.3/8.4 I can setup a translation to translate an internal host to another outside IP addres, only for connecting to one outside host, and the rest of the translations to outside are done dynamic using the outside IP. Can this be done on 8.0 code?

Cisco 2911 - VPN Passthrough help

Hi All,I few employees within our network require access to an external network using a Nortel VPN client. I am fairly new to firewalls and have configured a simple zone based firewall using Cisco CCP firewall wizard, basic - low security. The Nortel...

Resolved! Need to have a IDS/IPS system for LAN Users

Hi,I need to have a IDS/IPS for my local users in my network. we have 3xcisco 6509 in access layer switch with 4 VLANS and I am looking for a system to detect activities like Port scan, IP scan and ,... in local network from the workstations.Please a...

Resolved! DMZ access to inside and internet

Hello allTrying to setup a DMZ on a ASA5505 with UL and Sec+ licenses.inside 10.20.0.0 DC/DNS 10.20.2.1 Fileserver 10.20.2.3DMZ 10.21.0.0 App1 10.21.2.1 - Outside 12.12.12.3 App2 10.21.2.2 - Outside 12.12.12.4outside 12.12.12.2My en...

Best Practice for ASA Route Monitoring Options?

We have one pair Cisco ASA 5505 located in different location and there are two point to point links between those two locations, one for primary link (static route w/ low metric) and the other for backup (static route w/ high metric). The tracked op...

Resolved! Opening Port in ASA

Hi Everyone,If i need to open specfic port on ASA so that it allow the traffic for that.What are different ways to open port using CLI?ThanksMahesh

Network Security

Forum Posts

ASA 5550 Multiple Context - TACACS on Console Port

ASA 5510 and Port Forwarding?

Removing unused objects (Cisco ASA)

Authenticate with Microsoft LDAP

Not clear ASA 5515-k9 with Antivirus or not?

Resolved! How to allow protocol 97 in PIX 515E

help needed with NAT on ASA 8.4 (x)

Resolved! Regular Expression Matching of Custom HTTP Headers - ASA 8.2(4)

PIX 506 - Limited Throughput ?

ASA 8.0 Nat 1 machine to 1 IP, dynamic the rest?

Cisco 2911 - VPN Passthrough help

Resolved! Need to have a IDS/IPS system for LAN Users

Resolved! DMZ access to inside and internet

Best Practice for ASA Route Monitoring Options?

Resolved! Opening Port in ASA

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

how are blocking cookie and java be applied in real situation?

Comm test between subinterfaces and physical ports in ASA Firewall

Queries with Cisco Secure Client 5.1.3 & ISE

FMC Migration from VMware to Hyper-V

License Needed for FMC on Hyper-V

Cisco ASA ACL and NAT for RDP through subinterface allow any

is this flow impossible?

DDOS and "Error processing payload: Payload ID: 1"