Network Security

some questions about NAC

I want to deploy NAC in my company, I have some questions about NAC: 1. If I deploy 1 NAC server and 1 NAC manager with IN-BAND: - When NAC server dies (NAC manager oprates), traffic is bypass or not? what things will happens? - When NAC manager dies...

Cisco Access Registrar related to NACS

Hi all, I have both the CAR & NACS, is there any relative functioning for the Nacs from the CAR for Database or User Profile requiem.

PIX 515E

I'm having some troubles setting up a new firewall. (I'm new to firewalls)I've got the unit up with configured IP addresses on inside and outside. Downloaded and installed ASDM software. I can't seem to get it to pass traffic. The unit is being used ...

Resolved! New to ASA. Can you source ping from inside interface to Internet?

Hi Guys,Am I supposed to be able to ping an internet address sourced from the inside interface?ping inside 1.1.1.1I can ping this address from outside interface.Here is my config:interface Ethernet0/0 nameif outside security-level 0 ip address 2.2.2....

Resolved! Nat-control

Hi,I was reading about Nat-Control.More I read it more confusion.It comes disabled with version 7.0 and more.It is something;When nat-control is enabled NAT is required for all traffic flowing across the security appliance. When nat-control is disabl...

Resolved! ASA 5505 base liscense - 10 inside hosts?

Hi allI would like to know what exactly means the restriction aplied with base license that comes with ASA 5505 regarding inside hosts.I've readed that every host connecting from inside to outside (internet access and so son) counts as one, but all h...

Zone based firewall VPN problem

I am trying to set up a VPN using a 871 router. The VPN is to be used by a remote client who will gain remote access to a PC using NetSupport software, a product similar to PCAnywhere. I am able to establish the VPN connection but the NetSupport soft...

ASA5505 02 ISP

Hi,I have to sugest a solution to my customer which can support 02 different ISPs simultaneously in active mode on ASA5505-SEC-BUN-K9. Is this solution possible.Thanks & Regards

AIM-IPS-K9 Laboratories

Hi I am doing a practice laboratories I have a madule AIM-IPS-K9 in a router 2811 and I have configurated the interfaces how say the link: http://www.cisco.com/en/US/docs/security/ips/6.2/configuration/guide/cli/cli_aim.html#wp1044942 I want to kno...

ASA Multiple Contexts with Shared interfaces

I have an issue with the ASA, multiple contexts and shared interfaces. I have read through the documentation on Cisco.com and also looked through the posts here, but my specific question is not really answered.I have two contexts running on an ASA v8...

traceroute issues with CISCO ASA 5540

We have a Cisco ASA connected to the internet through a Cisco 3800 series router. On the inside of the ASA we have a server that is published onto the internet (Static NAT on the ASA to a public IP).For some reason we require a sucessful traceroute t...

Need help with an object-group on PIX 506

I need to group the following ports for a VoIP device.514 UDP1194 UDP3480 UDP49000-50000 UDP443 TCPI obviously don't want to make 1000+ entries in the PIX config, and I'm a tad confused on the object-group and then how to apply it.Single IP, translat...

Resolved! PIX interface affects local VLAN traffic

Hi,I have a problem, in that servers on vlan 111 are intermitent in communicating them selve. This vlan 111 is trunked with vlan 100 to pix gB-ethr3. Th server gateways are the vlan111 on the pix. (v100 physical, v111 logical, only one switch 4948 is...

Windows RPC DCOM Overflow sub id 8

hi, lately i've been hammered badly by this signature. the funny thing is the destination ports are highports ,etc 1025,5000,etc (non netbios) . i noticed this signature has been firing frequently since ms08-067. anyone having the same experience ? i...

ASA dead-peer-detection behaviour

ASA is by default sending DPD R_U_THERE packets and expecting R_U_THERE_ACK packets from peer. My question is: in which moment ASA is sending DPD packets? Is this "always on" behavior or ASA is starting sending DPD packets once it stops receiving enc...

Network Security

Forum Posts

some questions about NAC

Cisco Access Registrar related to NACS

PIX 515E

Resolved! New to ASA. Can you source ping from inside interface to Internet?

Resolved! Nat-control

Resolved! ASA 5505 base liscense - 10 inside hosts?

Zone based firewall VPN problem

ASA5505 02 ISP

AIM-IPS-K9 Laboratories

ASA Multiple Contexts with Shared interfaces

traceroute issues with CISCO ASA 5540

Need help with an object-group on PIX 506

Resolved! PIX interface affects local VLAN traffic

Windows RPC DCOM Overflow sub id 8

ASA dead-peer-detection behaviour

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

ISE - WPA3 question

FMC and multiple AD domains

Dynamic Split Tunnelling - Android Devices

compartilhar internet com VLANS firepower asa

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

dupplicate tcp syn anyconnect

Internet breakout

Firepower Threat Defense 7.2.8 vs 7.4.2

Setup / Enable TFTP ASA 5525x

Cisco Secure Firewall File Policy exclude Windows Updates