Network Security

Resolved! Question on VPN ACL's and sysopt

Hi, I've not used PIX/ASA for a while and was wondering the following:We currently terminate site2site & RA vpn's directly on our perimeter ASAWhat would be the better option - to use sysopt or not - ie:If we use the external firewall acl to screen ...

PIX 515E: Can't Get Inside Interface Working During Setup

Hi folks!I've got a freshly formatted Cisco PIX 515E firewall that I am trying to configure with the proper boot image. When it boots, I can escape into the monitor mode, set the IP address, and download the boot image (pix804.bin) from the TFTP serv...

Load Balancing

There are two Unix server A and B acting as a reverse proxy server.Both the server A and B Natted with public IP to C and D respectively on Cisco ASA 5540 firewall.The Public IP C and D got registered in public DNS server for Domain name registration...

SSM 4GE - mac address

Hi all,last week i setup a brand new ASA 5540 (with SSM 4GE) 2GB in my lab from scratch - out of the box.ASA 8.3(2) 8.2(3) 8.0(5) ... and so onASDM 6.3(4)From setup was installed a subnetted Class C foroutside / 28 --> g0/0inside / 28 --> g0/1dm...

Resolved! Ambiguous command error adding host to object-group

When attempting to add a host to an object group I'm getting an 'ambiguous command' error. This is on an 8.2.4 ASA 5510, and ASDM 6.4.1. Here's the output from ASDM:[OK] object-group network Optim object-group network Optim[ERROR] network-obj...

transparent mode asa

Hi group ,access pc's and servers are having ip addresses from a same subnet ie they are sharing same broadcast domain..now i need to implement transparent mode asa firewall.but on switch i need to define two different vlans one for access pc's and ...

Transitioning from one URL-server to another

Ok, I have a question (not surprising).We have 2 ASA 5520's that are hooked together in an active/active standby failover mode. Both using version 8.2.(1).Currently on thses ASA's, we point our internet requests to a centrally located URL-server (N...

Resolved! ASA5510: enable communication between two internal networks.

Hello everybody,I have on an ASA5510 two internal netoworks (inside and voip) and an outside netowork.I would like two addresses of the inside network (10.1.1.1 and 10.1.1.2) to be able to access the whole voip network.I made many trial with static, ...

Resolved! Cisco Nac Agent Requirement type Audit

Hi experts,i can configure a requirement type as audit (opposed to mandatory or optional), so the client will still access the network, the user will not be notified, and the information will be sent to the cas.It is possibile to generate an email or...

Resolved! hotspot filtering list

Hi,I'm configuring a hotspot port on an ASA and was wondering if anyone had a outbound acl handy that would cover most of the stuff likely related to hacking. Just thought if you already had the list, why reinvent it? Thanks if you can share.

2 ISPs one default route!

Hi everybody,I have problem to setup my server to use second ISP connection that is not use as a default route.the topology is: I have server in Ethernet 3 in my ASA55020 firewall. IP is 172.16.1.2 GW 172.16.1.1(firewall). My firewall default route i...

Resolved! Port Forwarding on ASA 5505

I am trying to get my Cisco ASA 5505 to forward 2 ports to a server that runs a program called a repeater which is basically UltraVNC for remote access. The 2 ports are 5500 and 5901.The server IP is 192.168.0.xx and my public IP is 173.165.93.xxIf I...

Resolved! ASA IOS revision notes

Does Cisco provide the revision history/bugfixes/new features of each ASA IOS release?For example, on the ASA 5505 platform, 8.4(1) just came out but I don't know where to find the above information or if it is even availabe.

layer-2 firewall

Hi,I'm interested in layer-2 firewall feature set.internet--->firewall---->(load balancer)load balancer is in our internal network....so all traffic will hit the load balancer VIP and they load balancer will route traffic to the server. load balancer...

AIP-SSM-20 to send Email alerts

Dear all,I want to find out if it is possible to configure AIP-SSM to send an email alert whenever it blocks a packet or reset a connection. I am thinking of setting my AIP-SSM to alert me on mail whenever it blocks a connection. If possible, how do ...

Network Security

Forum Posts

Resolved! Question on VPN ACL's and sysopt

PIX 515E: Can't Get Inside Interface Working During Setup

Load Balancing

SSM 4GE - mac address

Resolved! Ambiguous command error adding host to object-group

transparent mode asa

Transitioning from one URL-server to another

Resolved! ASA5510: enable communication between two internal networks.

Resolved! Cisco Nac Agent Requirement type Audit

Resolved! hotspot filtering list

2 ISPs one default route!

Resolved! Port Forwarding on ASA 5505

Resolved! ASA IOS revision notes

layer-2 firewall

AIP-SSM-20 to send Email alerts

We want to celebrate the October Spotlight Award winners!

Get ready! Great things are coming to Cisco Community

New name, same great product: Cisco Spaces

DMZ & Internet Switches

How to change the interface mgmt from public ip to private ip FTD?

Deployment failures on SFR via FMC

It's possible to reload SNMP service on Cisco FTD 2120

RADIUS authc for SSH access to FTD, session terminates after login

FTD to remote FMC?

Number of ACL on FTD security zone with multiple interfaces

After upgrading Snort2 to Snort3 errors popping out and other problems

FMC Site to Site VPN Question

FPR1010 Port 443 https Web Access issue