Network Security

15 years in and I'm touching my first IPS device. I've just plugged an ASA-SSM-20 into an ASA 5520. I'm looking for online documentation and there seems, at first glance, to be very little out there.I found this http://www.cisco.com/en/US/docs/securi...

Hello guys,   I must do a node hardening on a firewall. The firewall is not from Cisco, but the vendor name is not essential for my question. I would like to know your opinions on which are the key points for a firewall hardening?    I'm addressing t...

HiIs the preempt option available in active standby ASA firewall setup with single context...somewhere i have read that same is available in active-active setup or active/standby setup with multiple context..If i active the multiple context mode on p...

Hi?if there is a way to configure pim-ssm on asa 5585x-ssm20thanks

Hi I was wondering if there is a tool to convert router ACL to Cisco ASA ACL? I have huge number of router ACLs that need to be moved to my FWSM , doing it manually will be a nightmare !!!Any ideas ? Thanks Sent from Cisco Technical Support iPad App

Hi,I'm trying to run ZBFW on a 2811 with IOS version 15.3(T4) and I'm running into a strange issue I'm not quite sure how to troubleshoot.I have 3 zones, internet, local, and ssl-vpn.The rules I'm trying to enforce are: all traffic from SSL-VPN can g...

Hi,I have this 2x ASA5540 firewall and notice the it is configured with a standby ip. The firewall is run in Active/Passive mode.However, the standby ip of this firewall is not point to the seconday firewall and vice versa for the primary firewall.AS...

Hi. We are planning on the move to ASA 8.4 version from 8.2, I see there are some changes in the Static and PAT commands in new version. There are huge sum of lines for static NAT entries in the current ASA 8.2, if these will get translated by itself...

Hi All,I tried looking in ASA documentations but unable to find out that how many IPSec Tunnels can be terminated to an ASA cluster. I have 5545 running only two IPSec Tunnels so far but need to terminate 18 sites all up and would like to confirm how...

I have a ASA5505 8.2(5)  Apparently it has crashed. On boot is get to "Begin to dump crashinfo to flash...." and hangs forever. All I can do is power cycle it to get to the same point.  Is there a way to skip the dump?  I can get to rommon during boo...

We have a situation where we were to setup a tunnel from a remote site to our internal net. We wereto provide an internal subnet that the remote site used to NAT from their net to the provided subnetfrom which they can then access other internal subn...

I recently purchased Botnet for an ASA and have it configured and working properly. I am however curious on who is responsible for its database content. I have seen it block many IPs that are from reputable sources with a "High Risk" label. IPs that ...