Network Security

Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

“Join

 
Labels

Forum Posts

Hi guys,I'm seeing something strange on my ASA log :Dropping TCP packet from dmz:10.x.x.x/23 to inside:10.x.x.x/45762, reason: MSS exceeded, MSS 536, data 556536 ?? Am i reading well ?When i do sh run sysopt :no sysopt connection timewaitsysopt conne...

I found the other night that on an ASA I was working with I could type login while in unprivileged mode and re-enter the same credentials I had just entered to login to the box (via SSH) to get myself into enable mode without ever having typed the wo...

slug420 by Level 1
  • 533 Views
  • 1 replies
  • 0 Helpful votes

I can't find direct answer on my search, is there anyone know which OID able to poll SSL users/Sessions from ASA 5540. I did google for last 3 days none of the OID I got not working. I am able to poll IPSec session though.Thanks

i have ASA 8.0 with static ip address and remote site has a ADSL ROuter with dynamic IP address.I am not able to make the Site to site vpn connection. I have tried dynamic map and standard site to site vpnconnection but nothing is working for me.Plea...

While using ASDM 5.2 for our PIX's and FWSM, I noticed that within the Access Rules, under Security Policy, right clicking on the Access Rule brought up the option to 'Show Log'. The pop up description of this function says "Show logs generated by t...

dgoswick by Level 1
  • 1358 Views
  • 1 replies
  • 0 Helpful votes

Is it possible to clear individual tunnels without bringing them all down? I've seen the clear crypt ips sa & cl crypt isa sa, but that's global. Is there something that I can do to pinpoint individual tunnels to kill?Thanks!

jcw009 by Level 1
  • 15306 Views
  • 4 replies
  • 0 Helpful votes

We're using an ASA-5505 and have switched to a DSL line that uses an ActionTec m1000 modem. To pass the static IP block straight through to the ASA the modem needs to be in bridging mode - but when it is a straight pass-through the modem does not sen...

jdrose_2 by Level 1
  • 1053 Views
  • 3 replies
  • 0 Helpful votes

All,I am about to implement GET VPN while read the following from Cisco's website:IPsec transport mode suffers from fragmentation and reassembly limitations and must not be used indeployments where encrypted or clear packets might require fragmentati...

yuhuiyao by Level 1
  • 1196 Views
  • 2 replies
  • 0 Helpful votes

<p>Hello everyone,</p><p>I have an ASA5510 and it's been running fine for a while now. One thing I notice is, on the ASDM Firewall view, I notice sometimes that the Interface facing the Internet (Outside interface) its showing (  ) n/a - config out o...

lazon by Level 1
  • 1286 Views
  • 2 replies
  • 0 Helpful votes

Who knows why the capture command on the asa 8.0 release does capture packets but is not able to display (or export to wireshark) all packets.The command I use (in several variations)capture cap1 type raw-data buffer 33554432 interface outside circul...