Network Security

Frequents disconnection when connecting to serveurs behind ASA 5520

Hi all,Since several weeks ago we are triyng to solve a disconnection problem related to servers benind an ASA 5520behind this ASA there are: -subnet with public ip addres-sunbet with prive ip address, the server on this subnet are acccesible via NA...

TCP connection works but UDP fails

Hey all,I have a server on my LAN that initialises a VPN to another box on the Internet which has a public IP address. For some reason, when the tunnel is established using TCP everything works but when using UDP (port 5000) it fails. The connection ...

Resolved! Setting up NAT on VPN Tunnel

I have an ASA 5505 with a tunnel to a third party network. The tunnel connection comes up fine but I can't get the NAT to work. They are requiring that I send them a specific IP address as the source IP. Here are the specifics:Source Network: 10.10.1...

Cisco ASA SSM-10 Global Correlation critical

Hello,I have a high value for Global Correlation parameter, which I generated my ips module is alarmed, how I can reset this value? Additionally, the automatical updates does not work properly in the module. What could be the problem?Thanks for you h...

Resolved! DHCP Relay across a site-to-site VPN tunnel using ASA 8.3 NATs

Hello,I'm trying to get DHCP relaying working across a site-to-site VPN between two ASAs.I found the article, here https://supportforums.cisco.com/community/netpro/security/firewall/blog/2011/01/07/asa-pix-dhcp-relay-through-vpn-tunnel a huge help a...

VPN and NAT

Hi AllMy setup..Site 1: Cisco ASA 5505 Firewall running 8.4.1Site 2: Cisco 877 RouterBetween the 2 of these I have a working site to site VPN setup. The only issue is if a NAT rule is set up on the remote office, to access that I have to use to the e...

PIX 515E Firewall not booting

I have the following Pix 515E Firewall, that has been working good for a few years. But suddenly, the Pix stop booting up. The only thing that is happening is the power and network traffic led flashes and the active led is off.So my question is tha...

Resolved! Network range NAT

Hi Experts,I have some servers in my inside network. all of them having public IPs. Do i need to NAT these Public IPs with the same Public IPs???orCan i use NO NAT for these servers and permitt all traffic from outside to these servers?or Is there an...

Understanding Inspection

I've never seen it in black and white, but my interpretation of "inspection" of traffic through a firewall is the concept of flows being continuously examined for statefulness. I suppose I need to define my understanding of statefulness as the maint...

VPN is not coming UP

Hi Experts,I have a PIX515E. I need to create a vpn to my clients office. PIX is alerady having two VPN, among two one is a dynamic VPN to a dynamic IP of netgear router.I tried to create a new IPSEC vpn to a gateway loadbalancer.Device is PLANET MH2...

Resolved! ASA 5510 confusion

I recently acquired a cisco ASA 5510 and want to incorporate it into an existing environment. First I will explain what I have in place that works and then what I have tried that doesn't work.Current setup cisco 2651 w/adsl wic and /29. I have the 26...

Error Message through connecting to PIX via ssh connection

heyi got an error while connecting to my PIX (515e) via ssh connection there is an error message appears (The serever has disconnected with error, server message reads: Internal Error) and at the console session at the time time, the following messag...

Resolved! Permitting traffic from entire domain

Hi,On an ASA is it possible to permit traffic from the domain name rather than the IP subnet? For example, say I wanted to permit all SMTP traffic from Cisco.com to a server on my DMZ. Can this be done and if so how?Thanks

Resolved! Access Inside Gateway (ASA5505 v8.3)

Since we isolated the ARP-cache issue, our little ASA is rocking along (I'm starting to like the device! ) just like it should.The issue I have now is a bit annoying, it's sort of the last issue: - Inside network: 10.0.0.0/24 - Outside network: ...

Resolved! Assign Same VPN Pool IP to Client? (ASA 5505-v8.4[2])

Is there any way to always assign the same IP address to an AnyConnect VPN client logged into an ASA 5505 running v8.4?

Network Security

Forum Posts

Frequents disconnection when connecting to serveurs behind ASA 5520

TCP connection works but UDP fails

Resolved! Setting up NAT on VPN Tunnel

Cisco ASA SSM-10 Global Correlation critical

Resolved! DHCP Relay across a site-to-site VPN tunnel using ASA 8.3 NATs

VPN and NAT

PIX 515E Firewall not booting

Resolved! Network range NAT

Understanding Inspection

VPN is not coming UP

Resolved! ASA 5510 confusion

Error Message through connecting to PIX via ssh connection

Resolved! Permitting traffic from entire domain

Resolved! Access Inside Gateway (ASA5505 v8.3)

Resolved! Assign Same VPN Pool IP to Client? (ASA 5505-v8.4[2])

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

FMCv 7.2.5.1: High CPU load - how to troubleshoot?

Cisco FTD Migration from 4100 to 4245

My CSLU(Cisco Smart License Utility) can't login into Cisco.

same question, same issue, Intervlan routing not possible at FTD

Migrate from FMC virtual 300 to FMC virtual

FTD and FMC backup creating a sf-storage folder

Route Based VPN FTD

Multi instance 3120 FTD - Each instance in different FMC Domain

FDM DHCP Relay

Need expert help with Firepower intervlan routing