Network Security

cisco asa vulnerability

We might be affected by "Cisco ASA UDP Inspection Engine Denial of Service Vulnerability - CSCtq10441" perhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120314-asa#softwareSo we want to move to a release in 8.2 code s...

IPS 4260 capacity

I have a 4260 with the latest software and I know it is rated at 1 - 2 Gbps (transactional / media rich) throughput. I have it monitoring a 400 Mbps pipe that is pretty well maxed out at 400 down and 100 up during peak times for a total of 500 Mbps ...

ASA 5540 _ I want to ping across inside to outside for testing

ASA 5540 8.2 (5)I have tried many combinations of command line syntax suggested in this forum but none are providing success so far.I want to ping from the Inside Interface across to the Outside Interface and visa versa.I have tried various ACLs as w...

Enablin IPS on CISCO 2911

Hey all ,I enable the IPS on the 2911 router . I am using the Basic IPS signatures that are inbulid on the routers . But sill it showing , that no signature is active .ip ips signature-category category all retired trueip ips signature-catego...

ASA-SSM-10 Troubleshooting

Hello All,Could someone kindly help me with troubleshooting an issue with the ASA-SSM-10 module.The issue is that the module is showing as critical in application and bypass mode.This is the current output of the show health command.IPS-Module# show ...

Resolved! CISCO ASA5510 Firewall transparent mode

Hi, i have a ASA5510 in the office, that already configured 3 context, namely, admin, user, server.in the server context, the last running config was not saved, and there was a power trip last friday night. 1 of the sub interface was affected, and i ...

Resolved! Problem getting access to tcp services in DMZ

Output of: packet-tracer input outside tcp my.current.ip.address ftp 192.168.6.1 ftpPhase: 1Type: ACCESS-LISTSubtype: Result: ALLOWConfig:Implicit RuleAdditional Information:MAC Access listPhase: 2Type: ROUTE-LOOKUPSubtype: inputResult: ALLOWConfig:A...

Confused with this ASA - VPN config issue

Hello. Can anyone help me here? I am new to the ASA config and commands. Everything works well, enough, on this ASA except the VPN. A client can connect but cannot access anything inside or outside. Here is the config. Can someone please take a look ...

ASA Restore config from other ASA

I have the configuration file of the ASA 5505 I have another exactly model that asa is new but this my first time working with an ASA.I going to configure it an ip address in the 0/0 interface and then use TFTP to upload the config to the star...

Resolved! AnyConnect Configuration - Tunnel subnets that are on "Static Routes"

Hi!I've been trying to setup my Cisco ASA to handle VPN connections to a couple of subnets.So we have a LAN which we have XenServers on (Lab environment)On these machines we have a pfSense each to get a public IP so that we can NAT services to our vi...

SSL VPN - Plug-In for IOS (SSH, RDP)

Hello,Are there any SSL VPN plug-ins for Router IOS that allow clientless RDP, VNC, and SSH? I know that the ASA has this capability, but I haven't seen any documentation stating that this is available in IOS.Thanks,Lee

Prioritize traffic based on destination IP?

Hi all, we're looking to use an ASA5505 or 5510 as our firewall but want to see if one of them can help us prioritize traffic. I know it does QoS but we're wanting to dedicate x amount of our bandwidth to traffic based on destination IP address. Is t...

Resolved! ASA Class C IP addressing, routing subnet design issue, brainstorming, comments welcome!

I am carving up an internet Class C for customer. This class C is used by 3 distinct QA, Corporate and Production firewalls. I want to carve up IP space so there is a /26 for each environment. The issue I have is the firewalls may need communication ...

ASA5520 Mgmt Interface

According to the below thread ASA5510 needs a security plus license to use Mgmt interface for regular traffic.https://supportforums.cisco.com/docs/DOC-4296Are there any license requirements to use the Mgmt interface of a ASA5520 (V8.4.2) as a regula...

Proxy-ARP disabled in ASA 8.4(3)...or is it?

Hi,We recently changed our service provider which were given a larger block of ip addresses. When we switched the interfaces and started to get everything backup. The ASA that has an outbound connection is receving arp replies for its default gateway...

Network Security

Forum Posts

cisco asa vulnerability

IPS 4260 capacity

ASA 5540 _ I want to ping across inside to outside for testing

Enablin IPS on CISCO 2911

ASA-SSM-10 Troubleshooting

Resolved! CISCO ASA5510 Firewall transparent mode

Resolved! Problem getting access to tcp services in DMZ

Confused with this ASA - VPN config issue

ASA Restore config from other ASA

Resolved! AnyConnect Configuration - Tunnel subnets that are on "Static Routes"

SSL VPN - Plug-In for IOS (SSH, RDP)

Prioritize traffic based on destination IP?

Resolved! ASA Class C IP addressing, routing subnet design issue, brainstorming, comments welcome!

ASA5520 Mgmt Interface

Proxy-ARP disabled in ASA 8.4(3)...or is it?

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

Comcast/Ciena handoff to ASA5506?

Cisco FPR-1010 always boot to FXOS mode

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

how are blocking cookie and java be applied in real situation?

Cisco ASA ACL and NAT for RDP through subinterface allow any

is this flow impossible?

DDOS and "Error processing payload: Payload ID: 1"

ASDM unable to login for v7.18(1)152

Logging Informational Configuration in Cisco ASA