Network Security

Configure ASA5515 switch ports

Hello All,I am moving from ASA 5505 to ASA 5515 because we are maxing out the number of connections that the 5505 can handle.The 5515 runs version ASA 8.6(1)2 and ASDM 6.6(1) and the 5505 version is ASA 8.2(5) ASDM 6.4(5).On the 5505 I used e0/0, 0/2...

help, error connection Cisco Identity Services Engine with AD.

Dear all, I have Cisco Indentity Services Engine, that connected to Active Directory. When I test connection detailed,the result is error, said:Test Connection ResultsThis dialog shows the detailed logs for the operation for: idsv0018.Status: FAILED...

Problems upgrading ASA 5505 memory

I am trying to get experience with 8.4 code on my 5505. I purchased a Cisco 512MB memory upgrade and installed it. It booted up once and I thought I was ok. I then looked down and noticed that all lights were blinking on the front panel and I had ...

Unable to Install Cisco Security Manager

Hi,I facing issue when trying to install Cisco Security Manager in my Windows Server 2008.I had attach the print screen of my server version and error message.The error message had mention that it was due to unsupport OS or terminal service.But, i ch...

ZBF Problem - % No more than 1023 classmaps can be defined.

I have been working on implementing zone based firewalls for a large client for some time now. They have multiple WAN sites, and lots of network segregation. It took me a while to figure out how to properly design and implement, then I started crui...

Resolved! command to check what mac ASA has learned

Hi all,If ASA is connected to switch on int say eth0/0.is there any command which can show us switch mac on ASA int ?I checked on ASA there is no sh mac command?ThanksMAhesh

Syslog to external SIEM

How to configure CSM4.2 to send syslog messages to external SIEM/SIM tools like ArcSight. RSA envision.Is it possible to configure CSM server logs alone to external serverThanks in advance.

CISCO ASA 5585

Dear All,Am not conversant with Firewalling.however i have need to set up CISCO ASA 5585 out of the box.i would like if any body could guide me through the initial and final installation steps.Jude.

Resolved! ACL help and understanding

Below is output from a config running on my VPN router (ip removed for security purposes).crypto map NMI-VPN isakmp-profile NMI-ISAKMPcrypto map NMI-VPN 10 ipsec-isakmp set peer X.X.X.X set transform-set AES-SHA set isakmp-profile NMI-ISAKMP match ad...

problem with no nat after upgrade version

Hello Guys...Im having problems with nat after upgrade....source = 10.11.7.14destination = 10.0.32.10the next hop for 10.0.32/24 is 10.0.5.1, by inside interface. My firewall Pings this 10.0.5.1. When I change the router to doesnt pass by firewall, t...

Resolved! Route / allow traffic from internal source out Wan interface and then back in the same interface

Hi,I have a cisco ASA 5510.I have a public Dns entry for a service thats say service.domain.com.the DNS entry for this is the same IP that computers in one office access the internet on. Computers can see the local IP of the server that runs this s...

Resolved! ASA connection between interfaces

Hi guys, I have questions on how to allow connections or in this case just ping, between R1 and R2 with ASA in the middle (R1-g0/0 and R2-g0/3). Below is my setup, this is a simple one but I couldn't make it work, I am just trying to set up the ASA t...

Cisco security agent - replacement

Some others who face this challenge?We have not found a solution that can replace the CSA, but would love to hear if there are some who have found a solution.

CSM 4.3 Importing ASA with Active Site to Site VPN's

I'm trying to import an ASA 5505 into CSM and it works up until it trys to import the VPN's and then displays the message below.Message : Incomplete Remote Access VPN ConfigurationSeverity : WarningDescription : There is no dynamic crypto map applied...

Resolved! DNS Doctoring (Re-write) with PAT on 8.4

I have a client that has a Cisco ASA 5505 on 8.4 and needs to do DNS Doctoring. They have a /30 public IP range, so they only have one IP on their outside interface that we PAT to any inside services, such as an e-mail server or RDP access.DNS Re-wri...

Network Security

Forum Posts

Configure ASA5515 switch ports

help, error connection Cisco Identity Services Engine with AD.

Problems upgrading ASA 5505 memory

Unable to Install Cisco Security Manager

ZBF Problem - % No more than 1023 classmaps can be defined.

Resolved! command to check what mac ASA has learned

Syslog to external SIEM

CISCO ASA 5585

Resolved! ACL help and understanding

problem with no nat after upgrade version

Resolved! Route / allow traffic from internal source out Wan interface and then back in the same interface

Resolved! ASA connection between interfaces

Cisco security agent - replacement

CSM 4.3 Importing ASA with Active Site to Site VPN's

Resolved! DNS Doctoring (Re-write) with PAT on 8.4

ACME on ASA

Reuse Object Group in a single ACL line

CSCwm49782 - enhance sma 2nd cruz heartbeat logging

Security Intelligence feed/list change alerts

FMC 7.4 and multi-instance FPR3130 chassis upgrades

Snort3 rate filter

PBR with AnyConnect

FMC: Automatic renew certificates?

Finding the forgotten IP address of a Cisco PIX 506E

Nexus using sha256 authentication for NTP