Network Security

Resolved! NAC certiicate warning message

Hi all,After upgradeding the NAC from 4.1.3 to 4.7.2, When the NAC agent login, we are getting the warning message as belowcertificate issues by www.perfigo.com is suitable for test lap but production we have to go for CA certificate. Customer not in...

Resolved! L2L VPN with overlap IP Addressing!!!

Hi,We would like to set up VPN tunnel with another location, but they both have same ip addressing.For instance:Location A: 10.1.0.0/16 (ASA firewall)Location B: 10.1.0.0/16 (ASA firewall)Is there any Cisco documentation I can follow??Thanks

Resolved! Need help with PAT and NAT w/single public IP

Hello all, need some help.Shouldn't the below config work for SMTP access to the internal server?When I do a show xlate, I see the Global PAT xlate on for both ext and int IP addresses on port 25.When I do a show access-list I never see any hits on t...

Strange status event

HiWe get a lot ( approximately 10 / minute) of the following message in the status event log for an IDSM-2:evStatus: eventId=1245875406575241648 vendor=Cisco originator: hostId: hostX appName: modprobe appInstanceId: time: de...

Resolved! ASA Hardware failover...

Dear,I have one query that in ASA Active-standby scenario, how users find out the active path (On which criteria).If possible pls send me config example.And also if active fw fail how it identify the standby fw path.and after active up how it revert ...

How can I download ASA interim releases?

I do not find these iterims on the dowmload page.The "old" link is working but does not show interims for 8.2.Thx

how to add macaddress in NAC profiler with xml script

Hi,how do we check

Voice not working thro ASA 5510

Hi,The customer is having linksys p2p on the trust side, nated through a public ip on the asa firewall interface.The call is not maturing. ie, the call is not hitting even the sip server at the isp office.Please find the configuration.Need your input...

process to retiring signatures

Hello.Can I find reason for retiring signatures in signatures update ?I mean information like this:XXXX/0 - "IE buffer overflow" - retired due to time (vulnerability was published 5 years ago)XXXY/0 - "Firefox buffer overflow" - retired due to many f...

IPS Simulator

Is there a Simulator available where I can do labs for practice before I take the IPS certification exam?

ASA GARP

Hi All,Just wondering is any knows how to have an ASA process a GARP (gratuitous ARP)?It appears that ASAs ignore them, therefore i have Linux HA that does not work beacuse theASA retains the original arp and ages out after four hours.Thanks for your...

Testing a ASA - SSM-10

I have a ASA 5520 that I have configured with an ASA -SSM10 card, I have it setup to scan traffic in my lab, is there any site I can use to test that the IPS is actually working?

Password Recovery on pix 515e

I am trying to resurrect an older firewall for a project. It is a Pix 515e. I do not have the passwords, so I am trying to do a recovery. I do not seem to be able to get the Ethernet ports on the firewall to intitialize. I have the pix connect to a c...

ASA and H.323

Hello, colleagues,I have some problems with configuring H.323 on ASA 5505 Version 7.2(1)At the inside network there is a H.323 gateway with address 192.168.1.8Static NAT is made that outside address X.X.X.X is forwarded to the inside address:static (...

ASA connection timeout

Hi All,there are two connection timeout on ASA:#timeout connection ...and the other one through class-map/policy-map with:#set connection timeout ....if we have both, I guess class-map/policy-map has higher priority.any suggestion would be very appre...

Network Security

Forum Posts

Resolved! NAC certiicate warning message

Resolved! L2L VPN with overlap IP Addressing!!!

Resolved! Need help with PAT and NAT w/single public IP

Strange status event

Resolved! ASA Hardware failover...

How can I download ASA interim releases?

how to add macaddress in NAC profiler with xml script

Voice not working thro ASA 5510

process to retiring signatures

IPS Simulator

ASA GARP

Testing a ASA - SSM-10

Password Recovery on pix 515e

ASA and H.323

ASA connection timeout

about FTD-V

Unable to edit and save a text object

CSCwo71835 - The NAS-IP-Address attribute is missing

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Firepower 2130 -how to resolve plugin 70658 SSH Server CBC Mode Cipher

SSH with X509v3 certificates

FPR‑4145 EOL/EOS ?

Firepower 4125 - how to resolve plugin 157288,

Cisco FMC QoS filtered by application

Disable checking of SIP traffic on FTD via FMC