Network Security

IPSec VPN traffic issue

I have a site to site VPN configured on a asa5505. The tunnel is up and the interesting traffic is successfully being encrypted. The issue is that when inbound traffic originating from a subnet outside of the encrypted range destin to the subnet with...

Resolved! ASA 5505 - Hairpinning or simple ACL/NAT entry?

I've attached a document showing how this network is designed. A client on a guest vlan behind the ASA, nat'd to one address on the public subnet, needs to be able to get out to the internet, and still come back in for specific services, such as OWA,...

Resolved! License with anyconnect on asa 5520

Dear All,We have a single ASA 5510 with version 7.2 (3) in our network and configured many IPSEC site to site, IPSEC - remote access vpn and webvpn with SSL. Everything is working well.ASA-5510# sh ver Cisco Adaptive Security Appliance Software Ver...

AIM-IPS password reset

I am following the password reset procedure for the AIM-IPS module in a 2811 Router.I enter the commnd "service-module ids-sensor 0/1 reset" after I suspended a session, then i return to the session, but the only think there is the username prompt...

Resolved! file system check recs on new ASAs

Just curious if anyone knows why I'd be seeing these on a new ASAs. The last two I received had these fsck records:f-monona-1# sh flash--#-- --length-- -----date/time------ path 182 16275456 Dec 13 2010 16:46:02 asa821-k8.bin 223 15962112 ...

Question on NAT 2 Private IP Addresses...

Guys- Question, If I have 2 Private IP Address and I want them to be NAT'd to the same IP address on the way out (specifically for 25 ports) - how can/is the correct way of doing this?This is what I am thinking, but I feel like I am wrong:Policy NAT...

Blocking out bound port 80 traffic using ASDM on ASA 5510

Hello, I am attempting to block outbound traffic for a specific PC on my LAN using the ASDM.. any advice is appreciated. Thanks.

migrate from pix515e ios 8.0.4 to asa5520 ios 8.4.5

Hello everybody.We want migrate our network from pix515e to asa5520.Access rules is same on both devices.When we change default gateway from ip address pix to ip address asa, we get assimetric traffic and both devices drops tcp packets.On asa 5520 we...

ASDM in Firewall Transparent mode

Greetings,I would like to configure an ASA5512-X in firewall transparent mode, but I am having trouble getting ASDM to lauch when I do.I have created a BVI interface with an IP address, and I hve enabled the mangement interface, but ASDM does not lau...

Resolved! ASA 5510 DMZ cannot talk to inside network

Evening all!so I have tried this a few configuring this a few times now, and I have not had much success! I am trying to do two things: - first, have the DMZ be completely transparent to the inside network (icmp, https, and a few other TCP ports). - ...

ASA 5505 configuration according to attached diagram

Hi,I want to know the ASA 5505 configuration.requirement -internal user able to use internet.Both the asa in active pasive modeInterneal IP address - 192.168.1.0 /24External IP address-182.73.131.88/29 DNS- 202.56.230.5 & 230.6please find the attche...

issue with vpn and internet

Cisco CISCO2911/K9IOS: Version 15.0(1r)M15Inventory:1 DSL controller3 Gigabit Ethernet interfaces1 ATM interface2 Virtual Private Network (VPN) Modules1 cisco ISM Crypto Engine(s)Its a simple configuration of a branch router connecting HO with VPN an...

Scanning problem

Hello,I have a remote site with 5 peoples with ASA 5505 just behind the ISP router. I keep observes message like this in my syslog servers. Nov 26 09:42:21 Nov-******** 26 2012 09:42:21: %ASA-4-733100: [ Scanning] drop rate-1 exceeded. Current burst ...

Resolved! how to allow few url and block other in cisco asa 5510

how to allow few url and block other in cisco asa 5510

cisco asa 5510 + csc10 + HA

hello,I don't know where to ask about it, but, I would like to configure ASA5510 with csc10 (antispam, content filter, antivirus) for 250 users and I would like to have second ASA 5510 + csc10 as a HA (standby) , is this configuration possible ? what...

Network Security

Forum Posts

IPSec VPN traffic issue

Resolved! ASA 5505 - Hairpinning or simple ACL/NAT entry?

Resolved! License with anyconnect on asa 5520

AIM-IPS password reset

Resolved! file system check recs on new ASAs

Question on NAT 2 Private IP Addresses...

Blocking out bound port 80 traffic using ASDM on ASA 5510

migrate from pix515e ios 8.0.4 to asa5520 ios 8.4.5

ASDM in Firewall Transparent mode

Resolved! ASA 5510 DMZ cannot talk to inside network

ASA 5505 configuration according to attached diagram

issue with vpn and internet

Scanning problem

Resolved! how to allow few url and block other in cisco asa 5510

cisco asa 5510 + csc10 + HA

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

SIP traffic not functioning as expected following migration

key advantages of cisco 1220cx Over fortinet firewalls

How to Modify Content-Security-Policy (CSP) for FTD Remote Access VPN

IPsec session (Phase 2) hang. Cisco Secure Firewall (Firepower)

Change Syslog Port Cisco FirePower Management Center

Expired Web server certificate preventing upgrade

FMC Enable SSL Decryption Impact and Creating Key and Certificate

ASA 5516X keeps crashing/restarting

FMCv Licensing

FMC 1000 to HA FMC 1600: Upgrade Strategy & CUFA to ISE-PIC Migration