Network Security

Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

“Join

 
Labels

Forum Posts

uio

TCP OUTSIDE:192.168.1.1/80 INSIDE:10.1.196.77/56825 flags UfFRIOTCP OUTSIDE:192.168.1.1/80 INSIDE:10.34.4.133/1223 flags UIOTCP OUTSIDE:192.168.1.1/80 what is diffrence between two flags

I am actually going to setup my ASA 5505 with two different outside ISPs such that half of inside lan networks will be natted into 1 ISP and other half of the inside lan networks will be natted into other ISP ,so this means1.1.1.1/24  is our one ISP2...

zac192000 by Level 1
  • 2186 Views
  • 5 replies
  • 0 Helpful votes

Resolved! NAT ASA 8.4+

Greetings, I'm reading through the 8.4 guide NAT configurations explanations and examples. I stumbled on the following example. The following example configures dynamic NAT that hides 192.168.2.0 network behind a range ofoutside addresses 10.2.2.1 th...

merryllem by Level 1
  • 1314 Views
  • 3 replies
  • 0 Helpful votes

We have a need for an inside address to have more than one static NAT outside addresses.  I know this wasn't possible before 8.3.X code.  I still can't quite get it to work with 8.4.X code yet.Here is what I had with 8.2 code.static (inside,outside) ...

lovedam by Level 1
  • 886 Views
  • 2 replies
  • 0 Helpful votes

Default FWSM inspection policyHow does traffic inspection works ?Traffic with Inspection On is sent to the Control Point for Deep Paket Inspection and tarffic not being inspected takes Fastpath.For ExampleIf I remove SQLNET from default inspection , ...

Moin Khan by Level 1
  • 592 Views
  • 1 replies
  • 0 Helpful votes

On FWSM (running version 4.1 in my case) the default global policy uses the following class map:class-map inspection_default match default-inspection-trafficDoes anyone know what "default-inspection-traffic" includes? Is it all traffic? If so, do I r...

bourse by Level 1
  • 6747 Views
  • 9 replies
  • 0 Helpful votes

HiHope someone can help me with the following problem.I have an ASA 5510 that looks like this:INTERFACE 0: DHCP (OUTSIDE)INTERFACE 1: 10.45.0.1 255.255.255.0INTERFACE 2: 192.168.0.1 255.255.255.0I need to access the net (10.45.0.0 255.255.255.0) on I...

Hi,I have an issue where udp idle sessions are not being closed after the configured 2 minute timeout, but instead staying open for 1 hour. FWSM VersionFWSM Firewall Version 4.0(12)Timeout configurationtimeout conn 1:00:00 half-closed 0:10:00 udp 0:0...

inthemix1 by Level 1
  • 1013 Views
  • 1 replies
  • 0 Helpful votes

Hi Guys, i'm trying to configure an ASA with two ISP to be reached from internet for vpn access, the objective is that the user can use any of the Public address attached to ASA to connect to the company. Is this possible? i'm facing some problems be...

ochalmers by Level 1
  • 508 Views
  • 1 replies
  • 0 Helpful votes

All,I have a friend trying to configure an existing PIX.  They needed to change IP addresses due to ISP switch.  Config was very basic but whenever he puts in the route outside command the PIX seems to take it but then he is saying it is disappearing...

All,now that OpenDNS is no longer a free service I was wondering if anyone had any ideas about free alternatives.  We have some customers that just refuse to pay for this type of service. Thanks in advance!All replies rated

Hi friends,I am saravanan from Utah. One of our customers has asked us to nat from the LAN to the Voice LAN based on destination IP address in order to access a public phone server thorugh a vendor mangaed voice router..                              ...

I have 2 two questions:The first question:I have make an ACL entry inactive for test. For example I setup an ACL: access-list out-in extended permit tcp host 2.2.2.2 host 1.1.1.1 eq telnetaccess-list out-in extended permit tcp host 2.2.2.2 host 1.1.1...