Network Security

Resolved! FWSM 2.3.x in 6500 running SXI4

Hi allWe have to perform an update on a pair of 6500s w/Sup 720 to 12.2(33)SXI4. The 6500s are both installed with FWSMs which are still running the 2.3(3) code, arranged in a failover pair. We're planning to update the FWSMs to v4.0(12) soon but ...

ASA 5520 sluggish with IPS module and threat detection

We have a failover pair of ASA 5520's with IPS modules. During some recent peak activity periods (ecommerce spikes in traffic), The inspection load on the IPS goes up over 80%. The proc on the ASA gets smacked at 99+ % and the Dispatch Unit process...

FWSM or ASA

My company's network has not been very well designed. I am in the process ofredesigning it. I am going to do away with the 3 firewalls they currently have and move all the network behind a firewall so that all traffic going through our network will...

Resolved! Updating Software on ASA5510

Hello All! I happen to have a ASA5510 (Security Plus license) laying around and was wanting to update it to the latest version of software however I'm having some difficulty doing so. Here's what I have on it currently:Hardware ASA5510-K8, 1024 MB ...

ASA5510, Website blocking?

Greetings Cisco Gurus, I have an ASA5510 at our corporate office location that's mainly for VPN tunneling to my 20 remote locations. Every firewall I've configured has had a place to blacklist specific websites but I cannot find anywhere on this dev...

Pls take a look at my ASA 5505 Config

Hi all, pls kindly take a look at my ASA 5505 config and see if there are any holes which could allow a hacker through and/or cause the internet speed to be slow. The reason I'm asking is because my user reported that they were hacked and that their ...

NAC Agent Distribution

Hello,I have updated NAC from 4.7 to 4.8, I wanna distribute Nac agent throughtout the campus on 1000 PC,how can i do it,i have downloaded a nac agent from cisco site nacagentsetup-win-4.8.0.32 Is it right agent patch that i have to distribute ??????...

File sharing on ASA 5510

Hi, I have a ASA 5510 firewall.I manage to run it . now the problem is , most users are unable to access files on the file server.How to configure it ?

Resolved! Upgrading Engine Version on IPS 4240

Hi, I am running an IPS 4240 Sensor with Engine Version 7.0(1) E3 and the Sensor always has a high load of 97-98%. Is it recommended to update the sensor to the latest engine version, considering the amount of load on it right now?ThanksKiran

Range of Ports Mapping in PIX515e version 8

i am unable to Find Command in PIX515e version 8 to map Range of ports to Range of portsMy Configuration isobject-group service SAP_port udp port-object range 3200 3299 access-list outside-inside extended permit udp any host 88.85.229.107 range 320...

NAC Guest User - How to delete/remove Guest Accounts

Hi,Can anybody advise me how to remove/delete Guest User accounts created in NAC Guest Server. We I log with my sponsor account (local account) I could not see any option to delete or remove Guest users. We have so many guest accounts in the database...

FWSM active-active config( Intra chassis)

Hi all,Is anybody is having configuration for same chasis acctive-active configuration( intra cheass) ?. I am going to install the 2 fwsm in the same chasis with active-active configuratuion. In cisco site only the inter chasis configuration is avail...

ASA 5520

I have may be a problem in ASA firewall I configurethe nat and access-list and all other configuration that needto secure my network but sometime the internet connection is lost fro the insideor when the internet user need to brows the DMZ website I ...

Cisco 877 IOS Firewall.

Hi Guys,Firstly I'm not sure if this is the correct place to put this enquiry. It is an issue with an 877 router, but the problem itself seems to be with the Firewall functionality on it.For simplicity sake lets say I have 2 vlans setup on it VLAN1 ...

Resolved! protocol removal from inspection

we see sunrpc & imap being present under inspect policy-map in a cisco zone based firewall.Attempts to remove both these from the policy doesnt succeed. I have used following methods for removal -RtrBr(config-pmap)#class type inspect Lan-to-internet ...

Network Security

Forum Posts

Resolved! FWSM 2.3.x in 6500 running SXI4

ASA 5520 sluggish with IPS module and threat detection

FWSM or ASA

Resolved! Updating Software on ASA5510

ASA5510, Website blocking?

Pls take a look at my ASA 5505 Config

NAC Agent Distribution

File sharing on ASA 5510

Resolved! Upgrading Engine Version on IPS 4240

Range of Ports Mapping in PIX515e version 8

NAC Guest User - How to delete/remove Guest Accounts

FWSM active-active config( Intra chassis)

ASA 5520

Cisco 877 IOS Firewall.

Resolved! protocol removal from inspection

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Cisco FTD Migration from 4100 to 4245

My CSLU(Cisco Smart License Utility) can't login into Cisco.

same question, same issue, Intervlan routing not possible at FTD

Migrate from FMC virtual 300 to FMC virtual

FMC Connection Events Export

FTD and FMC backup creating a sf-storage folder

Route Based VPN FTD

Multi instance 3120 FTD - Each instance in different FMC Domain

FDM DHCP Relay

Need expert help with Firepower intervlan routing