Network Security

Wrong domain for self signed ID Cert.

I am tryin to generate a self signed certificate for Indentity Certificates, and keep coming up with the wrong domain name. The "Issued To" and "Issued by" both refer to the incorrect domain.In the config, the correct domain name can be found in:doma...

Upgrade VPN client from ASA

I'm try to upgrade all my ssl vpn clients but for some reason its not seeing the upgraded software. I used the followinig document but was unsuccessful. I'm running version 8.05 on the firewall and ASDM 6.2(5). Can anybody help with this?

5510 redundancy question

setting up redundant 5510's with an outside interface an inside interface and a dmz interface. The question is, will the standby unit go to active if ANY of the 3 interfaces goes down? i.e. if the primary interface f0/2 nameif dmz goes down, will t...

CISCO ASA_Blocking all traffic

Hello.I have a CISCO ASA firewall. The network looks like:LAN > L2 Switch > ASA E0/1 - ASA E0/0 > ISPThe interface E0/0 is connected to the ISP end & intercafe E0/1 is connected to my LAN of few PC via a L2 switch.The problem I am facing is, I can no...

Resolved! Missing crypto policy

Why would a crypto isakmp policy not be loaded from the startup-config into the running-config during a reload? We had five policies, only four of which are in the running-config now. No changes had been made after reload. Thanx!

Resolved! ftp connection error on ASA but not on PIX

I recently upgraded from a PIX to ASA 5510. The configuration is almost identical the only difference I can see is the software version number.Cisco PIX Security Appliance Software Version 7.1(2)Device Manager Version 5.1(2)Cisco Adaptive Security Ap...

Poor Performance

I have been working with Pix Firewall and ASA 5550.I am using the default policy configuration including inspect http.I got throughput 10 times biger without using inspect http (on both pix and asa) when moving files :wget http://averybigfile

ASA 5510 (ASA5510-BUN-K9) Support Options

Hi,I'm new to Cisco products so please bear with me.I'm settled on purchasing the ASA 5510 (ASA5510-BUN-K9) but I'm unsure about what support options are available/required.I have a few questions1) Does the ASA5510-BUN-K9 come with any support and so...

ASA - POP3 Client inbound issue

Dear Friends,I am facing trouble in setting up a gmail account on Outlook with incoming server on 995.This PC is behind a firewall with PAT. esmtp inspection is enabled.I am able to send mails , however i am unable to download my inbox.Has anyone fac...

Resolved! How to configure IOS firewall to open webserver.

Hi everyone,I would like to configure a router,1. My ISP provides a global IP address with PPPoE. ex) 200.200.200.2 .2. The router used in this scenario is 2611XM with IOS 12.4T(AES) which has two FastEthernet interfaces, Fa0/0 and Fa0/1.3. I would l...

Filter some messages from logging.

Hello.I'm using any ACL entry to deny DNS request without log keyword.I'm receiving a lot of 106010 and 106011 messages.How can I filter these message? I don't wanto to use the no logging message command.Many thanks for your help.Regards.Andrea

standby ip required?

I have two routed ASA's that I want to run in active/standby mode. But I'm short on IP addresses on the outside interface. Is the standby ip address absolutely required for failover to function properly, or is that only used if that interface is mo...

Resolved! From Cisco 873 to ASA 5505 (Firewall)

Hi,We have an old Cisco 873 for ADSL but we need the firewall configuration of this to be put into an ASA 5505 7.2(4). Can someone please check the configuration below if correct? If there is needed to change please help.Cisco 873:Current configurati...

DIFFERENCE BETWEEN BASE LICENSE AND PLUS - ASA

Hello I would like to know the diffrence between:Trend Micro InterScan for Cisco CSC SSM 20 BASE and Trend Micro InterScan for Cisco CSC SSM 20 PLUS

IPS module in an ASA 5520

Does anyone have any configuration docs for an IPS module in an ASA 5520?Thanks,

Network Security

Forum Posts

Wrong domain for self signed ID Cert.

Upgrade VPN client from ASA

5510 redundancy question

CISCO ASA_Blocking all traffic

Resolved! Missing crypto policy

Resolved! ftp connection error on ASA but not on PIX

Poor Performance

ASA 5510 (ASA5510-BUN-K9) Support Options

ASA - POP3 Client inbound issue

Resolved! How to configure IOS firewall to open webserver.

Filter some messages from logging.

standby ip required?

Resolved! From Cisco 873 to ASA 5505 (Firewall)

DIFFERENCE BETWEEN BASE LICENSE AND PLUS - ASA

IPS module in an ASA 5520

Meet and congratulate the February 2023 Spotlight Awardees!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

How to set it up eNcore outputters to connect with the Elasticsearch

High CPU load at the FMC (7.0.4) caused by python3 processes

Can't login to FTD GUI

Connect with anyconnect to ftd internal interface eg. guest-wlan

[NetAcad] CyberOps VM Can't work, recently.

LOCAL Server Group Account Lockout

Disable SSH v1 and telnet on FTD via CLI or FMC?

Changing session timeouts, logging/syslog, etc. on FMC?

ASA 5506-X missing FirePOWER tab

Using TCP port of Syslog and FTD and local logging?