Is there a way I can see what is the shared secret set for a AAA server group in running-config of ASA? At present it appears as ***** but I want to see its real value using config on firewall.fw1# sh run aaa-serveraaa-server ACS protocol tacacs+aaa-...
Hi Everyone,Need to confirm how can i contact licnsing team at cisco to upgrade the license?ThanksMAhesh
I am changing out a Cisci 5505 for a 5510, however i am having issue with the vlansWith the 5505 in place eveything was working well, upgraded to a 5510The devices behind the FW on the 192.168.x.x network can no longer communicate.THe configs are bas...
Hi Experts,I am facing memory utilization problem in my ASA firewall (ASA 5520) with 512mb memory and 256mb flash, suddenly the memory utilization reached around 80%.After analyzing the issue we found more idle sessions (around 10000) and the same ha...
Hi,We just changed ISPs and now have a /29 routed subnet to be used on our ASA 5510 (8.4) instead of the one public ip we had before.There are a couple of PAT translations that were previously setup on the "interface" address which i now want to assi...
Hello,I have tried the below configuration to block the P2P traffic.But still the users can download using utorrent client. How do I effectively block all the P2P traffic. Please help.Class Mapclass-map type inspect match-any ALL-P2P-PROTOCOLSmatch p...
HI The network was simple like thie lan-------------(gi 1)--asa5520--(gi 0)--------------wanlan subnet is : 192.168.0.0/24wan: only one ip address 1.1.1.1The reqire was that: allow all lan hosts access to the internet . ...
I am running the SSM-10 off of an ASA 5510. While using the IME application, no data shows up under any gadget and I get the meeesage "No Data available to display" at each gadget. The gadgets that are showing this are Top signatures, Top attackers, ...
Hello, I'm having an issue allowing legitimate network traffic out. My ASA logs are filling up with: %ASA-4-419002: Duplicate TCP SYN from inside:192.168.1.41/xxxx to outside:172.16.1.215/xxxx with different initial sequence numberThe traffic is know...
Hello,I got following error message when login into IPS over IDM, after error is displayed IDM is closing.errSystemError-ct-sensorApp.463 not responding, please check system processes - The connect to the specified Io::ClientPipe failed.SSH login wor...
Hi,I am trying to conect two overlaping IP address sites ( see attached diagram). Site A LAN address will dynamic NAT to 10.1.1.0/24 at ASA5520.All the users from site A need to get services from site B ( DHCP, DNS, Mailbox,Print S...
I'll have to check into the deetails again but I recall there being a way to change the listening port for SSH. Not only do you have to configure SSH itself to listen on a new port but I think there was something about making the inbound interface p...
Hi All,I've a quick - I think - ASA NAT question. I have a server in a DMZ of my 8.4 ASA with nat:object network FTP-SERVER host 192.168.1.102 nat (dmz,outside) static interface tcp ftp ftpAnd that's working well. However, I now need to trans...
Is it possible to have multiple NAT translation for same IP We have a NAT statement as follows.10.0.0.1 -- > 100.10.10.1010.0.0.0/24 - 10.0.0.0/24 - Identity NAT for the traffic between same ranges. But this is not using when we have the first nat ru...
Hi ..My ASA run OSPF dynamic routing, I want to "clean up" route table by set AD for OSPF by 255. But in route table there is still route for it although it have AD 255.Anyone have try this ?BR
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 11-18-2025 12:11 AM | ||
| 11-13-2025 12:52 PM | ||
| 11-03-2025 09:48 AM | ||
| 10-30-2025 12:44 PM | ||
| 10-23-2025 07:14 AM |
| User | Count |
|---|---|
| 3 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |
