Network Security

Dual ISP with nat on ASA5510 V8.4

At the moment we want to connect the ASA on two seperate internet connections . We create one LAN interface and two WAN interfaces. Now we want to create nat rules nat our outgoing traffic. After some research and testing (on a 8.0(4) asa) we have it...

ASA5512-X losing connection to IPS Sensor

I have a new 5512-X with the built in IPS sensor. The firewall is running in transparent mode with the management interface being used for both the ASA and the IPS sensor. i.e. a single interface.Both the IPS and the ASA are configured on the same ne...

Bandwidth ManageMent on ASA 5505

HI , I have 20 mbps internet link and I have ASA 5505 . I have to divide this bandwidth 10-10 mbps each for Voice and Data . So that both can work properly. because when I am using it for both on same interface, I am getting Voice disturbance.. Pleas...

ASA 5505 Configure QoS & VOIP with SIP Trunking

Hi, I've read several posts and configuration documents including: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008084de0c.shtml#rateand http://brian-kayser.blogspot.ca/2010/10/doing-asa-quality-of-service-qos.htmlBut...

ASA 5510: VPN Reporting

Hi,I need to make a report of the VPN history on an ASA 5510 and I cannot find a way that fast.Please some info/tips.Thanks in advancegreetings,Pim van LutterveltSystem Administrator

Cisco DMZ

Case closed

Resolved! Global statement without a Nat statement

Hi,On our ASA 5510 (running IOS 7.2) we have a global statement that does not have a corresponding nat statement e.i. global (outside) 2 x.x.x.x , but no nat (inside) 2 blah 255.255.0.0 I am assuming that this is a mistake and that global without a ...

NAC Invalid switch configuration-OOB Error:OOB client "mac/ip" not found.

Hi everybody ! i just deployed Cisco NAC version 4.8.1 Virtual Gateway OOB on a LAN envieronment and on a WLAN envieronment, it works fine for some users , they can authenticate via the agent or web page, and then they are redirected to the access vl...

ASA acting as default gateway but cannot ping devices on the far end

I have 2 x ASA acting as default gateways the two can ping each other but when i tried to ping the far end devices like servers from one of the ASA it does not ping.dc3-fw1# ping 192.168.98.13Type escape sequence to abort.Sending 5, 100-byte ICMP Ech...

Syslog messages

Dear All,The ASA is configured to send the syslog messages to syslog server.I just want to know how can I display (view) those messages from the server, and will this overload the server after some time? how can I check the load status?Your help will...

Resolved! NAT hairpinning, from host to same host (8.3)

Under 8.3, I have static NAT:nat (INSIDE,OUTSIDE) source static PRIVATE1 PUBLICIP_17.22.16.2nat (INSIDE,OUTSIDE) source static PRIVATE2 PUBLICIP_17.22.16.3...with hairpinning enabled:same-security-traffic permit intra-interfacenat (INSIDE,INSIDE) sou...

ASA5505 ping inside to Outside don`t go

Hello,I have 2 ASA and would like to build a Side-to-Side VPN between these ASA. So I can learnsomething about configure a ASA for different thinks. But now I don`t can Ping from a Clientto the Internet-Router.My Configuration is:Client IP 192.168.1....

When to upgrade IPS software version?

Hello all,I have an asa-ssm-10 module with software version 7.0(2)E4, and was wondering when or if I should upgrade. There doesn't seem to be any issues with the IPS, so if it were a switch or router I wouldn't think I need to, but with it being an ...

Internal Auditor asking for IPS Report

Our Internal Auditor is asking for a copy of the logs or a report from our IPS showing that it is indeed keeping bad guys out. If you have had this same request, what info have you provided?

Resolved! Unable to ping internet site with inside interface.

Hi all,Is it possible to ping internet sites using the source as inside interface of ASA?i am trying to ping internet sites using source as inside interface but no luck.Does ASA allow ping using inside ip ?Thanksmahesh

Network Security

Forum Posts

Dual ISP with nat on ASA5510 V8.4

ASA5512-X losing connection to IPS Sensor

Bandwidth ManageMent on ASA 5505

ASA 5505 Configure QoS & VOIP with SIP Trunking

ASA 5510: VPN Reporting

Cisco DMZ

Resolved! Global statement without a Nat statement

NAC Invalid switch configuration-OOB Error:OOB client "mac/ip" not found.

ASA acting as default gateway but cannot ping devices on the far end

Syslog messages

Resolved! NAT hairpinning, from host to same host (8.3)

ASA5505 ping inside to Outside don`t go

When to upgrade IPS software version?

Internal Auditor asking for IPS Report

Resolved! Unable to ping internet site with inside interface.

pxGrid session subscription missing radius accounting session Id

Model Migration - 4110 Native to 4225 Instance S2S VPN Configs

ASA upgrade procedure on Hyper-V

Announcing the release of Firewall Migration Tool Version 7.7.10

CSCvx25052 - DOC: FTD Syslog messages 43000x missing from FMC

SFDataCorrelator down on Standby FMC

Recovery of "admin" password in CIsco ASAv runnin on AWS

Cisco FMC Access control policy under default

AnyConnect MAC OSX exclude/include DNS not working

FTD Migration Question