Network Security

Firewall Migration Tool v7.0.0.1 now live!

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...

Resolved! IPS and CSM FlexConfig

Can we Flex signatures tuning using CSM? I posted the question 3 days ago on the CSM forum, however, no one has answered it yet?Thanks. Cath.

Using ASA version 8.4.2

I dont really get it with NAT overloading on version 8.4.2, it's really confusing.See the following configuration;interface GigabitEthernet0 nameif outside security-level 0 ip address 10.50.0.1 255.255.255.0!interface GigabitEthernet1 nameif inside s...

Resolved! ASA 8.2 security-level default behavior

Hi,I'm trying to implement some best practices for ASA running on Software Release 8.2 and had a question about the default security-level behavior.Let's say I have 3 interfaces...-inside (security-level 100)-dmz (security-level 50)-outside (security...

squid3 transparent proxy using wccp

Lately I've been trying to get a squid server to work with WCCP on our network so that client traffic transparently goes through the proxy. The problem is, having very little experience with squid, I've hit a brick wall and despite spending days sear...

Resolved! ASA and Concurrent Sessions

Hi, I have a question about some of the parameter for the ASA.For example in Cisco ASA 5540 Adaptive Security Appliance Platform Capabilities and Capacities, I see Concurrent Sessions: 400,000Which mean what device can handle 400,000 session and no m...

ASA 5510 - How PAT with ONE public IP to TWO internal servers (SIP and 8080)

Hello Clever Guys, I've been dealing with this scenario, I've tried a bunch things but it didn't work, I'm about to gave up! :-/I have the following scenario:ASA5510 - v8.3(2)InterfacesETH0/0 = outside = 189.xxx.xxx.129ETH0/1 = inside = 10.xx.1.15ET...

Resolved! Need help with ASA config to set up proxy on DMZ

Hello guys,I have a problem, I´m trying to configure an ASA as shown in the attached scenario.I need that all inside users to go to the proxy server on DMZ and from there they will go out to the internet.Right now i have:INSIDE INTERFACEAccess-list i...

logging console 7

Hi Netprowhat is the equivalent of the command logging console 7 ,over the telnet to asa box to see all logs coming to FWthanksjamil

Cisco ASA - DMZ access outside

Hi I need some help here I have an ASA 5505 with the security bundle, latest ASA software 9.0(1).I have 3 DMZs. I initially allowed them access to the internet using e.g.:object network obj_dmz1 subnet 192.168.1.0 255.255.255.0 nat (dmz1,outside) dyn...

ASA Flags show Syn but server will not connect

All,I am trying to troubleshoot a server which will not connect to Microsofts' download servers.Below is the capture of the packets coming into the interface on the ASAI can see packets coming from the server (192.168.4.131) going ...

ASA 5525-x flash memory issue

We have a customer that has a ASA 5525-x reporting only 4g flash memory rather than 8g has anyone seen a 4g version of the 5525 or is the IOS reporting incorrectly the size, as it seems to be embedded on these units as a USB disk ...

Resolved! Shared VLAN FWSM

Hello All,We run a 6500 with an FWSM with about 10 virtual contexts. Within these virtual contexts we have a "shared" vlan. Basically I have added an interface to each context that is in the same network. This way using route statements I can communi...

Resolved! Websense integration with Cisco ASA

Hello guys,I have little experience with a Cisco ASA so would like help from you.I have in my network solution from Websense worked together with ASA Firewall. It works perfectly good, more discover that the ASA when working with Websense he only sen...

HELP!! asa 5505 8.4(5) problem with port forwarding-smtp

Hi I am having a big problem with port forwarding on my asa. I am trying to forward smtp through the asa to my mail server.my mail server ip is 10.0.0.2 and my outside interface is 80.80.80.80 , the ASA is setup with pppoe (I get internet access no ...

Causing some network problem after connecting the new ASA to my network

Hi everyone,Hope you can help on this issue.... It is strange to me...but may not be to you Currently, I have a subnet connects to my primary network. All the internet travel thru a router there in turn thru a pair of ASA failover firewall (ie Subet ...

Network Security

Forum Posts

Firewall Migration Tool v7.0.0.1 now live!

Resolved! IPS and CSM FlexConfig

Using ASA version 8.4.2

Resolved! ASA 8.2 security-level default behavior

squid3 transparent proxy using wccp

Resolved! ASA and Concurrent Sessions

ASA 5510 - How PAT with ONE public IP to TWO internal servers (SIP and 8080)

Resolved! Need help with ASA config to set up proxy on DMZ

logging console 7

Cisco ASA - DMZ access outside

ASA Flags show Syn but server will not connect

ASA 5525-x flash memory issue

Resolved! Shared VLAN FWSM

Resolved! Websense integration with Cisco ASA

HELP!! asa 5505 8.4(5) problem with port forwarding-smtp

Causing some network problem after connecting the new ASA to my network

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Issues selecting connection profile (connection attempt has failed)

Cisco router IPSEC tunnel to AWS with Star Link help

Problem with ssl decrypt-resign on Cisco Sefure Firewall

FTD reboots and the active firewall losts all of the User ID entries

ASA AD LDAP Authorization belonging to multiple groups

Using FlexConfig to change default command (no sysopt noproxyarp) rule

Trying to enable AnyConnect Alias

EU compliance certificate Firepower 1010 NGFW

Firepower 1010 readiness check stuck at "Please Wait"

OpenSSH regreSSHion vulnerability in FMC