Network Security

Configuring Dyn Nat on different subnet than the outside network

Hi AllWe have to add some nating configuration to the ones that we already have.Actually we nat all the inside traffic from our ASA 5520 to the outside public IP.We recently add a new public IP network from our ISP. We want to nat a specific inside ...

learning IDS?

I would like to get some sort of IDS box for my lab to work on while I study. Any recomendations? At my workplace we use SSM modules in our 5540's but we dont have nay in a lab environemnt and I really dont think they would appreciate me flipping sw...

Automatic Naming/Binding of access lists with ASA??

I have been told that if an access list is created with the suffix _access_in, that if the preifx is the name of an interface, then that access list is automatically bound to that interface, even if there is no explicit command doing that.I looking a...

Teardown missing for built inbound connection on Cisco PIX 6.3

Hi,In my syslog server configured for Cisco PIX 6.3,I see lot of Built and teardown connections.Logic says if something is built then there should be a teardown.But I do not see teardowns for some connections even though I know that path is already b...

Basic question inbound / outbound and source service (ASA 5505)

Hi there,I'm new to the ASA 5505 appliance and have a few very basic questions. Hope I get some responses and not flamed for being a total newbie. :-)Inbound versus outbound: I'm having a difficulty understanding the inbound versus outbound terminolo...

Broadcast forwarding on ASA5510

Hi @ all,hope you guys can help me. Did not found anything refering to this on the search.Situation: On a Customer Site we have a Cisco ASA5510 in routed mode, and we have 2 networks which are both routed fine.The Customer has one device+ on lets say...

Trunk Vs physical port

Guys can someone plz tell me what is the difference between using subinterface and physical interface for example if i have four DMZ and i take ether1 and then subdivide them in four and trunk it to the swicth (with port channel).....

Issue with CSC-SSM-10

HI,I have ASA 5510 with CSC-SSM-10 ASA 5510 IOS version- 8.4.2 and CSC-SSM-10 IOS version 6.6.1162.Web filtering is working fine with respective to my configuration.From yesterday morning, i was facing issue with the sites like gmail, webmail.After ...

Resolved! "CPU,Memory, & Load in IDM of NME-IPS-K9"

Dear all, I configured NME-IPS-K9 with Cisco Router 2811 and I use IDM to access to IPS then, I saw the graph on Dashboard for CPU, Memory, & Load graph show CUP usage: CPU1 used 2% and CPU2 used 100%. I wonder why it shows two CPU? what is CPU1 bel...

allowing entry and exit of a packet through the same interface (asa 5500)

Can anyone help me with a big question I have.pc test:ip: 192.68.5.100/24default: 192.168.5.2ASA firewall:firewall (ASA 5500 Series): 192.168.5.2 (interface 0/0 inside)Routing 1: 192.168.3.0/24 gw 172.10.10.1Routing 2: 192.168.3.100/32 gw 192.168.5.1...

c2s on asa using crypto map

hello guys ,i have started managing a asa 5510 firewall which is already having c2s tunnels , the problem i am facing is they are configured as "crypto map"i have attached sample config . , i am finding it difficult to understand the parameters used ...

ASDM V6.3 "Lost Connection to Firewall" ... Syslog Connection Lost

Experiencing a frustrating problem that I'm hoping others have experienced and been able to resolve. Running ASDM V6.3 connecting to a couple of ASA5580's V8.2. After initial configuration everything seemed to work great, however, as of a few days ag...

ACL not working in ASA 8.4

An ACL has been applied on the inside interface to of the ASA 8.4 but it is not working. The aim of this list to allow only a few host for outside access and deny rest of the hosts for outside access. The syntex of the access list is access-list ACL-...

http failed to send data to server

Dear friends,I have one server-A(windows 2008) installed one application called"host front" which gives athentication to connect Linux(mainframe console)server(SERVER B).These 2 servers are bihind the firewall.If one internal user ...

Public IP in DMZ on ASA5510 :: Bridging ?

Hi Folks,So I have a new 5510 which I have upgraded to 8.4(3). I have a /29 subnet from the telco on my outside interface. I have 6 subinterfaces on a dot1Q trunk on my inside interface. The customer requirement is to have two servers in a DMZ which ...

Network Security

Forum Posts

Configuring Dyn Nat on different subnet than the outside network

learning IDS?

Automatic Naming/Binding of access lists with ASA??

Teardown missing for built inbound connection on Cisco PIX 6.3

Basic question inbound / outbound and source service (ASA 5505)

Broadcast forwarding on ASA5510

Trunk Vs physical port

Issue with CSC-SSM-10

Resolved! "CPU,Memory, & Load in IDM of NME-IPS-K9"

allowing entry and exit of a packet through the same interface (asa 5500)

c2s on asa using crypto map

ASDM V6.3 "Lost Connection to Firewall" ... Syslog Connection Lost

ACL not working in ASA 8.4

http failed to send data to server

Public IP in DMZ on ASA5510 :: Bridging ?

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

firepower SSL policy cipher suite for default action

compartilhar internet com VLANS firepower asa

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

How to Specify a PAC File on FMC Policy for Secure Client

CSCwk14305 - "Unable to unlock or revert SED" observed after rebooting

FMC 46k HA - after rebuild HA Secondary doesn't register Chassis

FTD not receiving SGT inline

Help setting up FTDv in Azure

How to configure Port Forwarding on FTD

Compatibility matrix for FMC and SFR