Network Security

Resolved! PIX 515e VPN Quickie

Hi,We currently have a remote site connected over a site to site VPN to a PIX 515e at our head office. We also have a client to site VPN that also terminates at the same PIX on the same outside interface.We are in the process of testing the Cisco IP ...

Resolved! no alarm from IPS

Hello,We're using AIP-SSM-40, Version 7.0(2)E4.We send traffic from all interfaces to the IPS. When we test it with sigID 2004, we don't have any alarm.the configuration on the ASA is as follow :access-list inside_mpc extended permit ip any anyclass-...

Static Natting Outside

Hello,I have two strange problem, please help me for success.static (DMZ,outside) 82.X.X.X 10.1.1.1 netmask 255.255.255.255access-list outside extended permit tcp any object-group WEB-SERVERS eq www access-list outside extended permit tcp any object...

Resolved! can ASDM with full privs but cannot SSH login

Hi,I cannot SSH to a 5510, but I can ASDM to it with full privileges and make changes.The message is password authentication failed, but it's the same authentication I used to ASDM. I use passowrd manager, so it's not a typo.This is version 8.2(2). W...

No General release(GD) ASA software?

Hi guys, When I go to the download ASA software most of them are ED releases, through I do see 3 interim release versions. Why are there no General release (GD) versions (in the 8.x.x code path)? Or are ED or Interim releases considered stable?TIA

Resolved! Firewall deny not getting logged

Hi AllI am facing a strange issue with FWSM firewall rules and need some help on that.On this firewall, we have logging enabled to a log all denies for blocked ports. . This is covered in the last deny statement with port object-group as shown below....

Accessing IPS Module in a VRF

Hello Members,i have installed a IPS Module on a router. Unfortunately the interface i use to access the router is in a VRF and i can't access the service module in this scenario. Here is the router config.interface IDS-Sensor1/0 ip vrf forwarding CE...

Resolved! Cisco ASA 5550 Throughput

The 5550 is rate at 1.2 Gbps. But that througput is split between the 2 interface busses right? Actual throughput is 600 Mbps for slot 0, and another 600 Mbps for slot 1?

IPv6 routing for ASA

Hello,is there any plan/roadmap/reference for ipv6 support for dynamic routing protocols for ASA family?ThanksREgardsIvica

Allowing any trafic to the outside interface.

Hi,I was hoping someone could help me with a rule on an ASA 5510.access-list inside_access_in extended permit ip any interface OutsideThe idea is to simply deny access to any other network, but allow access to the Outside Interface for Internet conne...

Virtual ASA 5510

Hi,We have a pair of ASA 5510's which we cant quite get to work properly when they go live. The problem is that we cant work out whats wrong with them until they are put into the production enviroment. Is there any software we can use to virtualise ...

Resolved! ASA policing issue

Dear friends,There is a requirement for a wireless guest subnet to be policed to 600 kbps while sending traffic to Internet.The wireless guest subnet is 172.20.50.0/24 and is connected to inside interface of ASA.A point to note is that this subnet is...

Gre tunnel over IPSEC through ASA

Hello everyone!How do I configure my ASA to pass through a GRE tunnel encrypted with IPSEC? By default it fails!//Rulif

Resolved! ASA5505 This deployment possible?

Hi all,can i do this with the ASA5505?i plan to use the Lease Line only for VPN Traffic and the PPPOE Line for Internet Traffic.Configinterface Vlan1nameif insidesecurity-level 100ip address 172.20.1.1 255.255.255.0 !interface Vlan2nameif outsidesec...

ASA 5580 multiple contexts for two isp links and VPN

Following is our setupTwo sites with ASA5580(site-office) and ASA5505(head 0ffice) having internet connectivity and site-to-site VPN configuration.Now at site-office we are having two internet links ISP1 and ISP2.We want to divert internet traffic on...

Network Security

Forum Posts

Resolved! PIX 515e VPN Quickie

Resolved! no alarm from IPS

Static Natting Outside

Resolved! can ASDM with full privs but cannot SSH login

No General release(GD) ASA software?

Resolved! Firewall deny not getting logged

Accessing IPS Module in a VRF

Resolved! Cisco ASA 5550 Throughput

IPv6 routing for ASA

Allowing any trafic to the outside interface.

Virtual ASA 5510

Resolved! ASA policing issue

Gre tunnel over IPSEC through ASA

Resolved! ASA5505 This deployment possible?

ASA 5580 multiple contexts for two isp links and VPN

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

FTD with Inline-Set

Comm test between subinterfaces and physical ports in ASA Firewall

Queries with Cisco Secure Client 5.1.3 & ISE

Cisco Research Study! Take a survey for a chance to win $50 gift card

What's the ideal way to implement app-based 2FA for admin login for AS

FMC reports both Primary and Standby FTDs as Failed after upgrade

Delete cached SSH server key in FXOS

ttl-exceeded- packet drop in Site to Site VPN tunnel

Moniter Anyconnect (Secure Client) Deployments from Firepower

Multiple ports with the same subnet in FPR1120