Network Security

ASA blocks my IP address after I launch an IP scan of a my DMZ subnet

Hello,I needed to find out what IP addresses were being used on my DMZ. I am on the internal network, and the DMZ is on the DMZ port of an ASA.I launched a ping scan for the DMZ subnet. It finished. I know could not ping anything on the DMZ subnet...

Traffic from VPN IPsec to DMZ

I have already configured IPSec VPN between router and ASA.That is possible to reach hosts from remote location 192.168.201.0/24 via VPN to dmz-vlan13?So I need traffic from 192.168.201.0/24 via VPN to be pated to the DMZ-13.In log I found :No transl...

connections on pix

When we check sh conn local or foreign with the ip address on ASA..sometimes it just shows the no. of active connection counts and no the actual connections.Whats the reason for that & is there another way to see the conn during that time?Thanks.

Launching ASDM: SSLHandshakeException error

Using ASDM Launcher v1.5(22) to manage two stand alone ASA devices. ASDM launches fine for one of the devices, but not to the other. Error log shows:DM Launcher Version checking failed with javax.net.ssl.SSLHandshakeException: Remote host closed co...

No failover after upgrading SSL-VPN license

I only upgraded the primary from 50-100 SSL-VPN licenses, and now failover is not working.Is there anyway to bypass this? The other firewall has 50 licenses, but no idea when I'll get those increased.Thanks

Recommendation for best config doc for ASA5505

Anybody have a recommendation for the best config help for ASA5505.

Enabling DMZ interface

Hi,I have Cisco ASA5510 ,and configured the interface 0/0 as a OUTSIDE and assigned an IP address,interface 0/1 is assigned as a INSIDE and assigned an IP address,I have configured the interface 0/3 as a DMZ ,and assigned an IP address and NATTING an...

NAT exemption to no nat control after upgrade

Hello all, We are presently running FWSM 2.3(3)6 and are upgrading to the 3.2 code train. My question is if we are presently running NAT exemption with plans of implementing no nat control post upgrade, are there any caveats/implications to doing...

Resolved! ASA with VLANs ...... does dot1q actually work ?

Hi,I have a very simple config :1x ASA5510 firewall and 1x 2950 ethernet switch.I am trying to get dot1q trunking working between the two, and utlize VLANs through one single physical connection.This is easy right ?<--------------ASA-----------------...

IPsec VPN client duplicate subnet

I have an issue where a client is using the Cisco VPN client from behind a firewall. The client is on a 10.0.0.0/8 subnet, and the devices that they are trying to access are on a 10.2.128.0/24 subnet. Because the Clinet software only adds a 0.0.0.0 r...

ASDM unable to read the configuration from ASA

I have a new ASA 5510. I do I get around the followng error: "ASDM unable to read the configuration from ASA"

IPS error loading configuration

Dear all ,I have IPS 4270 that was working fine. But since 1 week,i was not able to access IPS and was giving error when pulling the configuration from IME (kindly see the attach).Also the sensor's health shows that the status of "application failed...

SSL VPN protection

Hi,when you enable SSL VPN on the outside interface, is there a way to specify :1- which ip addresses that can access this page ? (is it by ACL on the outside inteface ?2- i didn't find a max-retry lockout policy, so someone can access this page and ...

How to let other SMTP commands pass through PIX525 with 6.3 firmware

Hello Pro, command: fixup protocal smtp 25 will only let seven RFC smtp commands pass though PIX525 with 6.3. Would you please give me some advice on how to let all microsoft smtp commands pass through pix525? I have issued no fixup protocal smtp 25,...

PIX Standby reboot

My standby firewall automatically reboots. I have changed the Failover cable and the RAM as well. Still the issue is not arrested. Attached the log when captured during automatic reload.

Network Security

Forum Posts

ASA blocks my IP address after I launch an IP scan of a my DMZ subnet

Traffic from VPN IPsec to DMZ

connections on pix

Launching ASDM: SSLHandshakeException error

No failover after upgrading SSL-VPN license

Recommendation for best config doc for ASA5505

Enabling DMZ interface

NAT exemption to no nat control after upgrade

Resolved! ASA with VLANs ...... does dot1q actually work ?

IPsec VPN client duplicate subnet

ASDM unable to read the configuration from ASA

IPS error loading configuration

SSL VPN protection

How to let other SMTP commands pass through PIX525 with 6.3 firmware

PIX Standby reboot

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Cisco FPR 1010 FTD MDNS Routing

FMC 7.4.2 Force deploy from CLI

Umbrella DNS Connector Integration with Firepower Management Center

Cisco Secure Access for Linux

Seeking Project Ideas

Hardening ASA 5555X RAVPN against Brute-Force attacks

ASA VPN from inside/outside interface to one other interface ?

FMC Platform Settings

Upgrade ASA from 9.10 to 9.20 on FRP2120 HA Pair

how to use static route into ospf if nto selecting enable default org