Network Security

Port forwarding

How to port forward on ASA 5510?we have tried this configuration, but is is not working. Can you guys tell us what is wrong?ASA Version 7.0(8)!hostname ciscoasadomain-name default.domain.invalidenable password fhi49CaZUyRBMnYZ encryptedpasswd fhi49Ca...

Setting up device in DMZ (SlingBox)

Hello,For those who is not familiar with what is SlingBox is, it basically stream a analog or digital video source over TCP/IP. Is a pretty cool device and it will also stream the video over internet. http://ca.slingmedia.com/go/slingbox-prohdThe s...

ZBF Drops Source Port 0 Destination Port 3

Hi,My ZBF configuration is showing a lot of drops:114110: May 2 12:49:43.559 CET: %FW-6-LOG_SUMMARY: 1 packet were dropped from PUBLIC_IP:0 => PRIVATE_IP:3 (target:class)-(OUTSIDE_INSIDE_ZP:class-default)114111: May 2 12:49:43.559 CET: %FW-6-LOG_SU...

Define QoS on ASA only in specific hours

Hi,I am looking for the way to define QoS policy on ASA 5520 only from 8:00 till 16:00We use Cisco security manager and cannot find option to specify time interval.I didn't find such option in ASDM as wellCan you help me?Thanks, Igor

SDI AAA authentication for ASDM/HTTP access

Hi, I have two pairs of Cisco ASA firewalls (5510 and 5550) These has been configured foto authenticate SSH and HTTP connections by SDI/RSA SecurID.Recently this has stopped working and each time I try to re-enable it, I get the following error:ASA(c...

Natting on ASA

Hi, We having Ethernet connectivity terminated on Cisco 5520 ASA firewall. 172.16.100.15/28 IP pool is allotted by our provider for the connectivity. 172.16.100.16 is configured at Provider’s router interface. 172.16.100.17 is configured at our ASA f...

Resolved! Access FTP Sever in inside interface with Public IP

Hi,I have a ftp server in my inside zone of ASA, One of my application team needed to access that ftp server in the inside interface with the Public IP. If they were using a url for that I could have used "dns doctoring". I tried with the following N...

enable ping to public vpn profile ip

How i enable ping to public vpn ip.for example my outside interface is 172.20.10.2 and my public profile vpn ip is 217.122.142.198, and i need to ping to this public ip from another network.

Disk Wiped On Cisco ASA 5505

Hello,My Cisco ASA has suddenly lost all of its disk images although the disk is still intact.Is there a preferred way to restore this to factory with the software back on it ?Any help much appreciated.Thanks.S.

ASA5505 security+ problem with NAT

content removed....

Resolved! ICMP & ICMP Error Inspection

I'm currently running PIX 7.0.4.10 and preparing for an ASA conversion. In anticipation of the move I've been cleaning up the configs and decided to turn on ICMP &ICMP Error Inspection so I could get replace the "permit icmp any any" statement on my...

What do people use to document an ASA

Hi, I was wanting to know what people use to document firewall rules. We have a reasonably complex set of rules and NATs etc. At present I am using Excel as I think it would be very difficult to make an easy to read Visio diagram. But Excel is not t...

DCE-RPC uuid oriented inspection ACL

Hi all, did someone successfully applied ACL for MS-RPC service in an ASA or a FWSM ? There is a lot of example but it seem to be generic parameter.We are requested to do as some other manufacturer does, by specifying RPC access based on UUID . (ie...

Resolved! NAC - Not able to HTTPS into NAC Servers (CAS)

I was wondering if anyone has seen this issue. I am not able to HTTPS into my NAC Servers but I am still able to manage them via my NAC Managers. What would cause this?

ASA 5510 secondary IP on outside

Not being too familiar with the ASA, I have everything configured I need and it is working. The problem now is, I am trying to get an additional external IP address working to point to a new server inside our network. In many other firewalls and even...

Network Security

Forum Posts

Port forwarding

Setting up device in DMZ (SlingBox)

ZBF Drops Source Port 0 Destination Port 3

Define QoS on ASA only in specific hours

SDI AAA authentication for ASDM/HTTP access

Natting on ASA

Resolved! Access FTP Sever in inside interface with Public IP

enable ping to public vpn profile ip

Disk Wiped On Cisco ASA 5505

ASA5505 security+ problem with NAT

Resolved! ICMP & ICMP Error Inspection

What do people use to document an ASA

DCE-RPC uuid oriented inspection ACL

Resolved! NAC - Not able to HTTPS into NAC Servers (CAS)

ASA 5510 secondary IP on outside

VPN with Alias on FTD

FMC/FTD remote access user not found using DUO SSO

CSCvr64208 - ASDM launcher v1.9 not applying proxy rules

How changes time zone cisco FTD firewalls UTC to IST

Cisco FTD local login syslog

FMC Security Intelligence - logging only

Firepower 1010 registration

IKEv2 - CVE-2025-20182 - Denial of Service Vulnerability

FTD 7.4.2.2-28 Site to Site VPN Flow is denied by configured rule

No proposal chosen on FMC managed FTDv - any helpful debug commands?