Network Security

Resolved! Reverse Global and NAT statements...can this work??

this is what I'm trying to do..on an ASA5510 can I config global and nat statements but in reverse... instead of:global (outside) 98 10.153.98.1nat (inside) 98 10.255.0.0 255.255.0.0I'm trying to get this to work:global (inside) 98 10.153.98.1nat (ou...

Security context on ASA 5510

Hi all,We have an ASA 5510. we tried to configure multiple security context on it, the command "mode" is not available.Do we need license to be able to configure security context or is it a problem of IOS version?Here is the IOS :Cisco Adaptive Secur...

IDSM-2 Inline Vlan Pair - Duplicate Packets

Dear AllWe have a setup where two IDSM-2 modules are ether-channeled together in a single 6513 Chassis. There is an FWSM module also, which acts as the default gateway for all internal VLANs.Problem: IDSM show stat virtual-sensor command is showing t...

Remote Access VPN on Perimeter Firewall

Hi, We have a pair of ASA 5520 as our commercial web portal perimeter firewall. Is it feasible to configure remote access VPN (for remote management) on the same set of firewalls or is it better to use a separate firewall for this purpose.Would there...

ASA IPSec traffic not able to access servers in "outside" network

I have hundreds of IPSec tunnels terminating to (2) ASA 5540's running 8.0(4) code. All IPSec traffic seems to route properly. However recently a server was added to the same network as where the "outside" interface of the ASA's are located. IPSec...

Resolved! IPSec VPN Ports/Protocol

I want to fine tune our firewall, for that I need to allow IPSec VPN traffic in firewall. Can anyone tell me the exact IPSec Ports & Protocols? Our VPN device resides behind firewall and using IPSec over UDP.We are using Cisco ASA 5500 series as a VP...

Resolved! CVPND never runs on Vista anymore

Hi all. I've been using Cisco VPN client 5.0.02 for work for a while now on Vista. However, I recently upgraded to Vista SP2. Now, when I try to start the client, I get the error:Error 56: The Cisco Systems, Inc. VPN Service has not been started. ...

IDSM-2 virtualization with the exception of VLAN groups on inline interface

Please comment the feature that the IDSM-2 supports virtualization with the exception of VLAN groups on inline interface pairs. (http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli/cliAnEng.html)How can one configure VLAN groups...

failover setup between ASA5510-AIP10SP-K9 and ASA5510-SEC-BUN-K9

Not sure if we can setup Active/standby failover between ASA5510-AIP10SP-K9 and ASA5510-SEC-BUN-K9 at all?If anyone could advice please, that would be grateful. Thanks a lot

Cisco AnyConnect Client connection

After installing a Cisco AnyConnect Clinet one of the user cannot connect to the internet or the MSN messenger.What could be the issue

ASA internally generated traffic & Outbound ACL?

I hit an issue recently which I sort of understand but would like some clarification as to the behaviour.I have an ASA that has just two interfaces - inside security-100 & outside security-0 (the reality is slightly different but this is easier to ex...

Quick syslog question ASA 5500/8.04

Is there a way to get, from the syslog messages, which ACE of an ACL triggered a deny?frex, I have an object, Blocked_addresses, which contains 30 addresses. This is used in a deny in an ACL. This element of the ACL shows a bunch of hits, but no de...

Sync configs between AIP-SSMs

We have a pair of ASA 5520s in active/stanby mode. This part of the situation works great, configurations are always synced to the standby, nothing is lost. Planned failover has worked every time without users even noticing. We have an AIP-SSM-20 ...

ASA easy VPN server

Hi All, I've setup ASA as easy VPN server. I don't want user authentication, which means when I run VPN client, I want to connect directly without to ask me username and password. I know we can do this in router, but I couldn't figure out in ASA. any...

Resolved! White paper to set-up basic FWSM connectivity?

I have the FWSM design and configuration guides, and feel like I'm buried in minutia regarding figuring out how to config for basic access into the module. Is there a "Quick Start Guide" or a white paper that describes BASIC things like how to set u...

Network Security

Forum Posts

Resolved! Reverse Global and NAT statements...can this work??

Security context on ASA 5510

IDSM-2 Inline Vlan Pair - Duplicate Packets

Remote Access VPN on Perimeter Firewall

ASA IPSec traffic not able to access servers in "outside" network

Resolved! IPSec VPN Ports/Protocol

Resolved! CVPND never runs on Vista anymore

IDSM-2 virtualization with the exception of VLAN groups on inline interface

failover setup between ASA5510-AIP10SP-K9 and ASA5510-SEC-BUN-K9

Cisco AnyConnect Client connection

ASA internally generated traffic & Outbound ACL?

Quick syslog question ASA 5500/8.04

Sync configs between AIP-SSMs

ASA easy VPN server

Resolved! White paper to set-up basic FWSM connectivity?

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

How to allow RTP protocol in NAT and access list in FMC

Cisco FTD Migration from 4100 to 4245

My CSLU(Cisco Smart License Utility) can't login into Cisco.

same question, same issue, Intervlan routing not possible at FTD

Migrate from FMC virtual 300 to FMC virtual

Multi instance 3120 FTD - Each instance in different FMC Domain

FDM DHCP Relay

Need expert help with Firepower intervlan routing

ASA 5506 SSP Version?

FMC 7.2.5.1: Smart Agent is not registered with Smart Licensing Cloud