Network Security

ASA UPGRADE from 7.1 to 8.4

HI All,i need to upgrade ASA 5540 from 7.1 to 8.4 for secure connect feature of Cisco Jabber Configuration. Support forum guides that, i need to follow upgrade path from 7.1 --> 7.2 --> 8.0 --> 8.2 -->8.4 and also do a memory upgrade from 1GB to 2GB...

Resolved! Acls not working in ZBF

Hello, all! First-time post!I'm having problems with a lab. My network is 192.168.3.0. I'm supposed to block pings and tcp connections from specific networks (in this case, the 10.1.1.0 and 10.2.2.0 networks), and allow icmp and http in from the 192....

Resolved! Migrate Standby ASA to Backup Data Center

Hello Experts,We have backup data center where I am now planning to provide backup internet service ( in the case where there is internet down or power outage at main server room) . I have a pair of Cisco ASA's 5540, one of which I need to move to b...

Resolved! deny all traffic to 53 from outside

HiI've setup Cisco router's DNS server... via "ip dns server" which in need for inside use.. however now if I do portscan from outside it shows port 53 opened. How do I block all traffic to that 53 port from outside since i need this DNS only inside ...

Resolved! how to change default SSH port on ASA 5505 (port forwarding)

Hey guys,So here is my network.ASA5505--->Cisco1841--->Cat2960CodeASA asa831-k8.binCisco 1841 c1841-adventerprisek9-mz.151-4.M2.binCat 2960 c2960-lanbasek9-mz.122-55.SE1.binand here is my dilemma.I can SSH from the internet to my ASA on default port ...

ASA5505 Internal traffic between two subnets

How do I allow traffic between two internal subnets behind a router on an ASA?I have: Internet---ASA(192.168.1.1)---Router(192.168.1.2)--RouterSubnets(192.168.10.0/24)and(10.1.1.0/24)I can't get to the Router Subnet from the ASA and vice-versa. I al...

Resolved! Cisco firewall redundancy

Hello AllHopefully a quick question, we have 2 sites one is a disaster recovery site all our site to site VPN'S go into our DR site what my question is, i would like to set up something like HSRP, or GLBP so that if we lose out WAN link between the ...

WCCP configuration

hi to everyoneThis question maybe has been done beforei have some problems and doubts about WCCP configuration on ASA 8.2 (I hope that someone who has configurated Websense and ASA using WCCP read this )I have tested two configurations below the fir...

Resolved! How do I configure ASA 5520 to send SNMP Trap when IP SLA monitored port fails?

Below is my config for IP SLA. I would like a SNMP trap to be sent when my primary fails over to my secondary and so on. Is this even possible?sla monitor 20 type echo protocol ipIcmpEcho 100.X.X.1 interface INET-FIOS150 num-packets 2 timeout 2000 ...

Resolved! VPN tunnel is built via ASA5505 ver8.4, but unable to RDP & ICMP & unable to SSH outside intrfc

I'm new to the ASA5505 ver8.4 platform, so need some assistance. I'm able to build my tunnel but unable to RDP nor ICMP back to the INTERNAL network. VPN Client IP: 192.168.200.200INTERNAL IP: 172.17.130.200my configuration is below:HOME-ASAFW02(c...

Asa 5505 remote vpn client issue

Hi All,I have configured my remote vpn for the below config, still i am not able to get the client connected, seems i am missing the nat traversal on this, could you help me out please...Error:Cisco VPN Client: Reason 412 – The re...

Does policy nat support external source ip address in ASA?

I need to apply a policy nat rule to translate an inside ip address which is under a dmz router connected to the ASA. Is it possible at all?Source IP>Router Interface 1>Router Interface 2>ASA DMZ Interface>ASA Outside Interface>Router>WAN>Destination...

Accessing the SMTP from outside network through ASA 5510

hello good people,I have an issue with my mail server(SME Server) which is behind a Cisco ASA 5500(firewall) problem is that if one leaves my network they can receive but can not send email via my SMTP also internal people can only send if they use...

Resolved! (Primary) Lost Failover communications with mate

Hi,One of the interface on the primary fails and it switchover to secondary, this is happening with the primary firewall with irregular intervals, the ABC interface is a sub-interface and is connected to DMZ switch configured as a trunk. No other SUB...

Resolved! ASA IOS upload In Rommon Mode

I am trying to upload asa image through tha Tftp process but it give me error Tftp cannot transfer as i followed all the steps such asADDRESS=xxxxxxxSERVER=xxxxxxxGATEWAY=xxxxxxbut in end it gives me error it cannot tranfer, kindly if there is anothe...

Network Security

Forum Posts

ASA UPGRADE from 7.1 to 8.4

Resolved! Acls not working in ZBF

Resolved! Migrate Standby ASA to Backup Data Center

Resolved! deny all traffic to 53 from outside

Resolved! how to change default SSH port on ASA 5505 (port forwarding)

ASA5505 Internal traffic between two subnets

Resolved! Cisco firewall redundancy

WCCP configuration

Resolved! How do I configure ASA 5520 to send SNMP Trap when IP SLA monitored port fails?

Resolved! VPN tunnel is built via ASA5505 ver8.4, but unable to RDP & ICMP & unable to SSH outside intrfc

Asa 5505 remote vpn client issue

Does policy nat support external source ip address in ASA?

Accessing the SMTP from outside network through ASA 5510

Resolved! (Primary) Lost Failover communications with mate

Resolved! ASA IOS upload In Rommon Mode

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

Comcast/Ciena handoff to ASA5506?

Cisco FPR-1010 always boot to FXOS mode

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

how are blocking cookie and java be applied in real situation?

Cisco ASA ACL and NAT for RDP through subinterface allow any

is this flow impossible?

DDOS and "Error processing payload: Payload ID: 1"

ASDM unable to login for v7.18(1)152

Logging Informational Configuration in Cisco ASA