HiI try to configure my ASA (ASA5520) to have an SSH timeout of 48 hours.This is the config I use to realize that:class-map CLASS_MAP_ANY match anyclass-map CLASS_MAP_SSH match port tcp eq sshclass-map inspection_default match default-inspection-traf...
All,While I'm very familiar with access lists, I'm not familiar at all with Zone Based Security Policies. With that in mind, could somebody give me a verbal desciption of the default Zone Based Security Policy setup on my Cisco 881W router? I've tr...
Hello Everyone,I'm very new at firewalling. I have to setup a PIX to provide 2 DMZ zones with an inside VLAN for workstations. Right now I have a 3745 router connecting to WAN via ISP's 851 ethernet. I have 5 static IPs. Behind the 3745 I have a ...
What does the interface configuration in AIP-SSM indicates ?If this indicates that the traffics of this interface will be monitored, then what is the purpose of diverting traffic from asa though policy command.
I am seeing this message on my syslog server that I have NO explaination for. Perhap someone can point me to the right direction.hostA---(i)ASAVPN(o)---ASAFW---Internet---VPNc--hostBI have a site-to-site VPN between hostA and hostB between the ASA a...
I have a question about present scenario in a network where the wan connectivity is 4 GB and Lan network is 10 GB. The firewall for the WAN is cisco 5580-20 with 10 GB ethernet interface and on the LAN 6500 series switch with 10 GB ethernet module. T...
We have Pix 535 Firewall with licenced Failover .We want to introduce one additional gigaport for our client requirement,we had already used 3 gigibyte port and we can make the provision by replacing the VAC+ card.so want to know what impact it will ...
Dear all,Can the interface Management 0/0 on a Cisco ASA 5510 be used and configured to act as a normal Ethernet interface?This will enable to create an additional zone for hosting devices.Regards,Alvin
I am using Cisco NAC and recently my clients are recieving the error message that the NAC server can not be contacted but the NAC event logs are logging the following message "Invalid validation request" authentication error. Please help!!! Cisco T...
Guys,I have a NAC with two roles configured "Person" and "Person1" and I saw that when Person is authenticated it's put on Online users OOB and certified Devices but when Person1 is authenticated it's just appear as Online users OOB but does not appe...
Hi,We are in the process of migration some Nortel phones at various remote locations.These remote sites are not managed sites and some of them are using their own internal IP address forwarding traffic to MPLS edge router.With the PIX, using Static N...
Hi all.Can someone provide me a simple example of triggering predefined eem applets remotely ?Suppose i have 2 routers, R1 and R2. I made an applet on R2 which will be triggered remotely by R1 when some event on R1 occurs. Can someone provide me a si...
I'm using Pix 520 rev 4.2I need to enable a computer in the DMZ RDP access to computers (entire scope) behind the INSIDE interface. How can i do this?Ex. Machine (192.168.4.5/24 only) in DMZ needs to RDP into Machines (172.16.5.x/21) on the INSIDE ne...
We use Websense with our ASAI'm wanting to move Websense just inside our ASA5520 inside interface. I'm concerned that Websense's license count will increase. Anyone have a way to get an accurate count of IPs that an ASA inside interface sees?
Hi All,I have upgrade my ASA from 8.0.4 to 8.2.2 and post that ftp data traffic going over the VPN terminating on the ASA is not working, do i need to do any configuration change for this.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 05-05-2026 09:59 AM | ||
| 05-02-2026 06:09 AM | ||
| 04-30-2026 12:46 AM | ||
| 04-24-2026 07:04 AM | ||
| 04-22-2026 11:56 AM |
| User | Count |
|---|---|
| 9 | |
| 2 | |
| 2 | |
| 1 | |
| 1 |
