Our ASA 5520 was used to terminate VPN clients only. Today I terminated a 2nd ISP connection on another interface and made that the default interface on the firewall.As soon as I did that, VPN connections no longer connected to the original interfac...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,512) -
Cisco Bugs
(31) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,165) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Management Center (FMC)
(3) -
Cisco Secure Firewall Threat Defense (FTD)
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(319) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(91) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,553) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Open Source and Open Standards
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Automation Analytics Topics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(5) -
Other Firewalls
(1) -
Other IP Telephony
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,769) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(25) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Ok thats it. I am now 6 hours overtime in the office and i cannot get it to work.I have this:SG-BN001#sh zone securityzone self Description: System defined zonezone out-zone Member Interfaces: GigabitEthernet0/1.1 GigabitEthernet0/1.2zone in-...
We have an outside DNS server in our DMZ we maintain as well as an FTP server and McAfee Agent Handler for outside users to update virus definitions. Never needed an ACL on the DMZ interface until putting the McAfee box in. It has to have open port...
HiI have the below hardwareASA5510Software : 8.0(4) We have configured cut-through proxy. The issue is that it is integrted with ACS and both ACS and ASA are syncronized with NTP.Now the problem is that in the cut-through proxy the time stamp it giv...
I have NAC deplyed in OOB VGW and have version 4.8. Due to restricted internet policy, people are using internet through broadband devices. Is thatpossible if NAC can block these broadband connections.
Hi, We have a vlan that we protect from inbound traffic: 10 permit tcp any any established (189 matches) 20 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq 554 30 permit udp any xxx.xxx.xxx.xxx 0.0.0.1 eq 5004 40 permit udp any xxx.xxx.xxx.xxx 0...
Helloi have a connection that is being made pretty quickly, but when i change the ip and try the connection i am not able to quickly go through the connection process and because its not happening fast enough the connection is being dropped,how can i...
I have a 5505 running 8.3 and am using ADSM 6.3 to configure it. I have a dynamic PAT setup for the network I'm on and am trying to setup static bidirectional NAT for SMTP to a particular host. (I do have two external connections in this configura...
Hello,I am trying to have users connect to a Windows 2008 share over a 5505 without being prompted for their Domain credentials.Connection works well except for being prompted for their Domain credentials.I was wondering if there was a solution to th...
Hello,On my TACACS+ server, I would like to set up a user so that when they do a 'show ?' command, it will only list the commands that they are allowed to do, instead of the entire list. I searched all over and couldn't find any info on this. Does an...
Dear All,I have a problem with simultaneous L2 and L3 NAC deployement.I have a CAS configured as Real IP gateway, Inband. Previosly i can have the NAC running well on L3 deployment using PBR.I configured PBR on distribution switch to intercept the tr...
Hello Experts,I am facing some issues with vpn tunnel.I have formed the vpn tunnel between cisco pix (ver 7.2) and fortigate(othervendor).Once i initiate tunnel from fortigate i can see ike phase up with ipsec upfor eg 1 IKE and 5 IPSEC and all subne...
Resolved! Firewall capacity question
Hi,Am doing some checks on some data sheets and am getting a little confused with some of the details. Like for example a pix 501 where the data sheet claims support "Concurrent connections: 7,500". I am thinking that this is two way covering all t...
HIHow can I monitor my inbound and outbound trafic on ASa 5505. I want to check which IP is misbehaving in netwrok.please helpThanksAmardeep Rana
Dear's,Any different configuration for 6500 or IDSM-2 if i m placing with FWSM???? . I will place IDSM-2 in inline vlan pair mode,and all SVI will be created on FWSM instead of MSFC.Any suggestion please on above design and configuration.Thanks
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 10 | |
| 5 | |
| 5 | |
| 2 | |
| 1 |
