I am upgrading from a 515E to and ASA 5510 and I have multiple VPN tunnels setup in the configuration. I don't have all the documentation on them, meaning all of of the keys. Does anyone know how to pull the current config with the keys unencrypted...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,556) -
Cisco Bugs
(36) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(144) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(17) -
Cisco Secure Firewall Management Center (FMC)
(89) -
Cisco Secure Firewall Threat Defense (FTD)
(119) -
Cisco Security Cloud Control
(5) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(260) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(29) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,574) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(91) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,570) -
NGIPS
(1,873) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,775) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(634) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Can anyone explain why I have no problems with a VPN using this ACL:permit ip 172.18.85.0 0.0.0.255 10.11.0.0 0.0.0.255but this one:permit ip 172.18.85.0 0.0.0.255 10.11.0.0 0.0.7.255 doesn't work? I am only narrowing down the number of networks on t...
Router A has VPNs with two different remote sites but each remote site has overlapping subnets. Site B has subnets 10.11.0.0 / 16 and Site C has subnet 10.11.15.0 / 24. I tried tightening the ACLs and it caused problems with the VPN to Site B. The VP...
Hi all --A brief rundown of what I'm trying to do: An ASA 5505 without the security license sits in front of our office network. We have a block of five IPs from our ISP.We need to allow relatively liberal access from outside to one server via three...
I have a pix 501 (6.3(5)) that I need to be able to use to connect to remote vendors with. I also need to have the internal host on my side be nat'd to an address in my outside interface range so the vendors will connect to that device as the exter...
I just started receiving this message today whenever a user accesses the DHL website.199.41.238.32/0 --> 10.30.99.18/0 TCP <P>Microsoft Internet Explorer Method Parameter Validation Vulnerability</P>,NR-7427/0,Time:1229629119,Risk Rating:100,VLAN:0,A...
Hi,What will be the configurations needed to perform a intra-chassis active-active failover between 2 FWSMs, i have done defining the failover and state vlan on switch and also defined it in firewall vlan group.
I have our FWSM setup with the MSFC on the inside. I have an outside interface (0) and a inside interface (100). I need to add an additional interface for a internal department. I created a VLAN on the 6513 and presented it to the FWSM. I defined tha...
Folks, If the customer does not want to enable http or https on it's routers and switches, how can i manage them using CSM, What functionality will i loose if I only used SSH.Also what ports should I open of the devices are behing a firewall?
Resolved! FWSM ACL reached limit
Folks, please I have a FWSM with 4 contexts but I couldn't migrate my checkpoint Firewall to Cisco 4.0.4 FWSM because FWSM reached limit up to 100000 lines of the ACL.Anybody had this problem? I wondering about the use of the ASA in place of the FWSM...
Hi folk, I have a PIX 525 firewall which is working completely weird. The device is running the PIX Appliance software 8.0(4) and the problem is that some hosts from the inside can reach a server in the DMZ and others can't despite the static NAT fro...
Hi, I am trying to prevent DDoS / SYN flood attacks on an ASA5505 (simplest version, DMZ restricted license). The ASA is in front of a Web server with approximately 2500 unique visits a day. only port 80 and 53tcp/udp are openOnce or twice a day I s...
I wonder if there is a normal situation.When I enter "show resource-mamangemnt" at FWSM, I got the following log: A-FWSM-Active# sh resource usage system counter all 0Resource Current Peak Limit Denied ContextTelnet ...
Greetings, We are using Anyconnect 2.3.0254 client + SBL/gina and are looking to customize the client even further to prevent user from Disconnecting from the VPN tunnel. Basically we have remote users that come in on EVDO using Verizon VZaccess Man...
I have an AIP-SSM on a 5510. I'd like to pull events via SDEE. How do I go about setting this up? I have read some docs to just add host to the allowed hosts list, and setup a readonly account.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 11-06-2025 06:30 AM | ||
| 11-04-2025 11:16 AM | ||
| 11-03-2025 09:48 AM | ||
| 10-31-2025 12:20 AM | ||
| 10-30-2025 12:44 PM |
Top Solution Authors
| User | Count |
|---|---|
| 8 | |
| 4 | |
| 2 | |
| 2 | |
| 1 |
