Hi,Yesterday we tried to upgrade an ASA cluster from version 8.2(4) to 8.4(2) and it seems we encounterd the "fixed" bug CSCtf57830. This bug is indicated as fixed in version 8.4(1)...But in our upgrade process, all the "outside" access-lists entries...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,561) -
Cisco Bugs
(37) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(145) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(20) -
Cisco Secure Firewall Management Center (FMC)
(98) -
Cisco Secure Firewall Threat Defense (FTD)
(127) -
Cisco Security Cloud Control
(6) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(260) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(29) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,574) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(91) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,569) -
NGIPS
(1,873) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,775) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(8) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(637) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I came across an excerpt from the CCNP Security IPS Official Cert Guide at the weekend that essentially said that you can use an Etherchannel bundle as a destination port with SPAN to connect multiple sensors for a scaleable HA IDS solution. Now that...
Hi !i would like to see if this is currently possible :i have two firewalls, fwsms and/or asa .i would like to have the following configuration :fwsm/asa/other are in transparent mode [assuming that in that way they can pass Lacp]if they can pass lac...
Hi everyone,I was noticed that Cisco ASA is able to generate reports in terms of Syslog messages, NetFlow v9,but how can I schedule the appliance to create the reports on a daily/weekly/monthly basis?
Dear All,I would like to do something verys imple with IPTABLES but i canno't find any "simple" way to achieve...iptables -t nat -A PREROUTING -i eth0 -s 10.0.0.0/24 -p tcp --dport 80 -j DNAT --to squid-box:3128The idea is to redirect any connection ...
Hi everyone, I am looking for a Cisco firewall to replace a Sonicwall NSA240 firewall in SME environment, any one have good suggestion?Thank You
Hi All,I have created a object group and a access list as given below.object-group network MOBILE_INaccess-list MOBILE extended permit ip object-group MOBILE_IN anystatic (inside,outside) x.x.x.x access-list MOBILENow my problem is that By this conf...
Resolved! IDSM Logging to Kiwi
This may be a very naive question, if so it will certainly match my knowledge level! Can log messages be sent to a Kiwi Syslog Server? If so, how to configure?Many thanx-michael
Hi there,We have a site with 2x 5540 asas with SSM-20 IPS Module in active standby mode.The signatures 1204 and 1208 relating to Fragmented IP datagrams fire on traffic even when excluded from the siganture set.Any ideas why and how to fix this issue...
i have a Cisco ASA 5520 8.4(1) with a ASA 5520 VPN Plus licensei want to use the management interface as a regular interface (using the no management-only command)is this interface a Gig interface as well ?
Resolved! ASR 1000 ZBF
I have two questions about ZBF on ASR1000 with Firewall and Flexible Packet Inspection license:1 is IPv6 supported?2 can I use police action in an inspect rule? I want to limit some protocols to low bandwidth. There is no police command in ZBF policy...
Hi, a new antivirus software (sophos) has stopped the CSM 3.3.1 sp2 servcies probably and now I have some troubles to restart it again.But for safe procedure, how can I start a manual CSM back-up from CLI ?thanksrs
Hi:I have a question about using static NAT.I want to allow hosts on the inside interface to be able to access hosts in the dmz using their real dmz IP addresses.inside: 10.0.0.1/21security level 100dmz: 172.31.0.1/21security level 25The following co...
We have an ASA5505 were we see errors from time to time on this interface:Internal-Data0/1 I can't seem to find anyting as to what would cause this, or if its a problem. Anyone have any ideas? No other interfaces show the issue.Thanks,Jason
What would be the best Cisco device to have in order to fully protect a home network for unauthorized access? I don't need an all in one device since I already have Cisco routers and switches, just need to solid secuirty device.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 11-13-2025 12:52 PM | ||
| 11-13-2025 02:22 AM | ||
| 11-03-2025 09:48 AM | ||
| 10-30-2025 12:44 PM | ||
| 10-23-2025 07:14 AM |
Top Solution Authors
| User | Count |
|---|---|
| 3 | |
| 3 | |
| 3 | |
| 2 | |
| 2 |
