Network Security

Resolved! Help with Address translation/Port Forwarding

I am trying to correctly configure our ASA 5520 and our Mitel Border Gateway in our DMZ. In the documentation for the Mitel border gateway it wants me to set up 2 external IP's on my ASA one to allow 443 traffice into the MBG, and another for 443 tr...

Resolved! nat internal network before sending over tunnel

Hello,For a customer I have configured a new ASA 5505 firewall with 8.42 software. I had to build 3 ipsec tunnels to different locations and firewalls. All tunnels are working except one. I have to translate the inside network 1 to 1 to a different p...

Stuck at Initial stage CISCO pix 515e

HiI have a new pix 515e for Home pratice.1. I couldnt telnet the switch after configuring. should i have to use cross cable or not to connect PC-PIX? (as new switches and routers run through straight cable). more importantly i couldnt even ping the i...

Resolved! Unable to Telnet/SSH/RDP from inside ---> DMZ, ASA 5505

I am unable to Telnet/SSH/RDP from my inside network to my DMZ. I am not sure where the problem lies, I am able to use VNC from the inside to the DMZ (ports 5800, 5900), and also establish connection on Ports (26700-26899). I have a computer connecte...

IME initial setup. - account details

Hi , I am not sure about some of the questions I am being asked by IME whilst I am trying to add a device. I currently have "viewer" privilleges on the IPS sensor. So I thought that at least I could add a IPS sensor on my copy of IME on my desktop....

After log in at AIP-SSM, command prompt is not coming

Hi,We have two AIP-SSM module installed at Cisco ASA 5540 running at Active/Standby mode.We are able to log in at our Primary AIP-SSM module, but after log in we are unable to issue any command as the prompt is not coming back. We have issue the foll...

ASA TCP Reset-O

Hi,Here's the current scenario:[LAN] <---> ASA 5520 <---> Cisco 2911 <---> [Internet] <---> Server A | | [DMZ]Whenever I access a website running in "server A" (only HTTP traffic) ev...

ASA and Cius or iPAD

Using any computer and AnyConnect, I can connect to our network via ASA 5500. But when I use Cius or iPAD, I always get a No License error message. Sorry, newbie in ASA

How to set IDSM-2 promiscuous mode?

Hello,Can anyone help me setup my IDSM blade in promiscuous mode. I would like it to monitor three VLANs 10,20,25 so I can see how much traffic goes across them and what it picks up. Once I have everything setup I would then want to switch it to inli...

login failure to aip ssm-20

Hello,I have two firewalls namely cisco asa 5520 with AIP ssm-20 IPS modules built into them. I am trying to use the IPS modules built into themNeither of them will let me login to the IPS:session 1 prompts me to login so i login with default cisco ...

Resolved! ASA5520 DHCP Server on Subinterface

On our ASA5520 we have three subinterfaces configured on our Gi0/1. Is it possible to configure a DHCP Server on one of these subinterfaces?Thanks Mucho!!!

Out of band config changes and CSM

Were running CSM 3.3.1 SP1 on a windows machine. We aquired a company and have found that they were making out of band changes without the use of CSM directly from the CLI. Is there any easy way to sync the running config on the ASA firewalls to ...

Resolved! Duplicate IP address with ASA Interface Mac Address

We have an ESX server will multiple virtual servers defined. I am trying to migrate the default gateway IP address (.1) from a 3900 router to an ASA firewall. When the default gateway is assigned to the 3900 there are no issues. Shortly after moving ...

Static NAT on SA 540...

i have 14 nos of public ip address. 115.119.126.x1 to 115.119.126.x14 LAN zone 192.168.2.0/24 (include 3 zone 172.16.50.0/24, 172.16.51.0/24, 172.16.60.0/24 connected with L3 Switch)DMZ Zone 172.16.49.0/24i want to configure static nat from dmz to w...

Adding a 4250 into CSM...

4350 running 6.0CSM running 3.3.0 SP2I have a few or these I need to add into CSM and the all are failing...Does anyone have basic instructions for doing this? Should be prettystraight forward but I keep getting http errors. Thanks...

Network Security

Forum Posts

Resolved! Help with Address translation/Port Forwarding

Resolved! nat internal network before sending over tunnel

Stuck at Initial stage CISCO pix 515e

Resolved! Unable to Telnet/SSH/RDP from inside ---> DMZ, ASA 5505

IME initial setup. - account details

After log in at AIP-SSM, command prompt is not coming

ASA TCP Reset-O

ASA and Cius or iPAD

How to set IDSM-2 promiscuous mode?

login failure to aip ssm-20

Resolved! ASA5520 DHCP Server on Subinterface

Out of band config changes and CSM

Resolved! Duplicate IP address with ASA Interface Mac Address

Static NAT on SA 540...

Adding a 4250 into CSM...

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Cisco FTD Migration from 4100 to 4245

My CSLU(Cisco Smart License Utility) can't login into Cisco.

same question, same issue, Intervlan routing not possible at FTD

Migrate from FMC virtual 300 to FMC virtual

FMC Connection Events Export

FTD and FMC backup creating a sf-storage folder

Route Based VPN FTD

Multi instance 3120 FTD - Each instance in different FMC Domain

FDM DHCP Relay

Need expert help with Firepower intervlan routing