Last night my firewall failover to secondary suddenly and I am still trying to find the root cause. Looking at the log and history, I saw the reason of failover because the "Service card in other unit has failed". Further investigating and the card...
Network Security
Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(82) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,483) -
Cisco Bugs
(21) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(134) -
Cisco Firepower Device Manager (FDM)
(793) -
Cisco Firepower Management Center (FMC)
(2,865) -
Cisco Firepower Threat Defense (FTD)
(3,097) -
Cisco Press Cafe
(1) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(39) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(30) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(255) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(20) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,565) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(314) -
MPLS
(1) -
Multicloud Defense
(1) -
Network Management
(87) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,544) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Open Source and Open Standards
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Automation Analytics Topics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(5) -
Other Firewalls
(1) -
Other IP Telephony
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,756) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(23) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(17) -
Other Switches
(11) -
Other Switching
(3) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(2) -
Security Management
(615) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(5) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(25) -
VPN and AnyConnect
(1) -
Vulnerability Management
(39) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
We currently have a set of ASA5520's in resilient failover mode and wish to upgrade them to 5550's. The problem is we would like to have no downtime of the Firewalls.I have an idea of replacing the the Standby first with a 5550 and bringing on line w...
Hi All, I have two ASA 55210 were one ASA is working fine , while second ASA has similar configuration of ASA 1 but we have problem in reverse traffic , My TCP connection is established from inside interface to outside interface , while ...
Hello,It seems some of our users (maybe all) get intermittent issues when conecting to websites. For example when I connect to cisco.com or google.com it might take ages but load or fail, if I hit F5 to refresh then it loads immediately. During thi...
Hello Guys,I'm not familar CS-MARS but i have read the below book,Cisco.Press.Security.Threat.Mitigation.And.Response.Understanding.Cisco.Security.Mars,Am not sure where is the right place to keep the CS-MARS in the network, By reading this book wha...
Hello,If I use bundle ASA5580-40-10G-K9 in failover configuration should I use 10G interface for stateful failover link or 1G will be enough? Traffic on data interfaces will exceed 1G. Is a Etherchannel option available on ASA for failover link?Than...
Resolved! disassemble a complex nat statement
hi all,I have a PIX 7.0 with multiple complex nat statements that read something like this :global (outside) 1 interfaceglobal (dmza) 1 10.0.1.100global (dmzb) 1 10.0.2.100global (backup) 1 10.0.3.100nat (inside) 1 192.168.1.0 255.255.255.0nat (dmza)...
Hi All,I would like to ask you a question .i am using solarwind monitoring tool for bandwith monioring.I would like to know which interface we should use for monitoring ? Physical interface or tunnel interface .I am using GRE tunnel in each of my rem...
We are planning on bringing up a second site with a public class C, and putting ASAs at each site - at the new site in a failover config, and the previous site as a single unit (not failover or standby). The new site will be primary, and the prev...
HiWe use our Cisco ASA 5520 to allow our users a WebVPn into us. We have a policy that scans the endpoints to check there OS/AV/Firewall. Does anyone know if Cisco publishes a document that lists all teh OS/AV/Firewalls they support?Thanks
i know it can be done on my ASA5510 - that's not my porblem - I just need to justify the risks. I've been trying to hunt down any supporting "Best Practice" documents that state whether it's advisable to allow ssh access from the internet to the outs...
Hi! we are interested CSC-SSM module and have some questions about it.1. How does CSC control the number of users, source adress maybe?2. and is it possible point out diffrent subnets that the CSC-SSM will check for traffic, and skip some others subn...
Resolved! "Write Net" command on PIX515e
Hello:I have a PIX515e. I am doing some DR testing on a stand-buy unit. When I issue the "write net" command to restore a backed up config from a TFTP server I keep getting a message that says "Not allowed to overwrite existing files". Any advice w...
HiI am using pix firewall.firewall is connected outside interface is connected to ISP;Inside interface is connected to a switch and users are connected to the switch.Without configuring a access list to allow incoming traffic,is it possible for users...
Resolved! CSC SSM Multiple Context
Hi,I would like to know if the CSC SSM is supported on the Multiple Context mode on the ASA?How is this achievable?On my setup i have 2 different context, apparently 1 of my context are able to access to the CSC SSM.Reason being, context 1 and the CS...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 05-18-2025 10:52 PM | ||
| 05-13-2025 11:57 PM | ||
| 05-11-2025 11:49 PM | ||
| 05-06-2025 09:03 AM | ||
| 05-06-2025 03:05 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 3 | |
| 2 | |
| 1 | |
| 1 | |
| 1 |
