HiDo Cisco have recommendations on minimum bandwidth/latency for the failover and state sync links between active/passive units?Client wishes to geographically separate primary and secondary units over a layer2 WAN (Ethernet extension service).Thanks
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,511) -
Cisco Bugs
(31) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,165) -
Cisco Press Cafe
(1) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(318) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(91) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,553) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Open Source and Open Standards
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Automation Analytics Topics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(5) -
Other Firewalls
(1) -
Other IP Telephony
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,768) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(25) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hello, We have two ISPs providing the two separate links. But my IPS is having only one in port and one port. But I want both the ISP links should come to my LAN through IPS. How can I do? Can I do this. A switch has 2 L3 vlans, one vlan for incoming...
Hi allI need to log any external attack to the ASA. To do this i have issued the folowing commands:logging enablelogging timestamplogging buffer-size 100000logging buffered warningsaccess-list acl-out extended deny ip any any log warningsThe problem ...
currently we have an external addressthat is nat'd internallythe external address has a rule on the outside interface of our fwpermit any "xternal" address ipincomingthe server is in our dmz...however, the server is wide open in to the internet....SS...
Hi,I have a site-to-site VPN setup with a client on pur PIX. The tunnel is currently using the default group policy, so access is only permitted to the customer servers. I would like to grant the customer site http access to one of our internal serve...
Hi,I have Mail server in the DMZ zone,and it is natted and the port 25 is opened....with the following command,When I try to telnet the server NATTED ip with the port 25 ,I am getting the blank screen,but no message appears....static (dmz,outside) tc...
Hello All,I have managed to get my ASA5505 to authenticate IPs for cut though proxy using Telnet and it works great.However I want to use only Telnet for authentication and if a user has not yet authenticated and then opens a browser session they are...
Hi to all,I'm new at NAC, does anyone know the steps on how to configure the remediation on a client machine using NAC and WSUS?? Is there a rule that match it??, etc, etc...Thanks in advance for your help!
Hi, If the SSM module is rebooted in a ASA failover configuration, would the ASA failover take place. Is it possible to avoid failover upon SSM failure.
I will be glad if you can help me to compose an access list to block some address in my LAN (172.16.0.0/24). I want 172.16.0.1-172.16.0.65 to browse the internet and exclude all other address.
Hi, i have a question. In this moment i have a server 3350 (Part number: NAC3350-SVR-RMA, serial number: USM7270087). Can I used it, for a new deployment?, I wanted to buy another server like this, in order to have Failover.Is this possible to use it...
Hi to all,Does anyone know if it is possible to configure SSO using NAC and a checkpoint firewall VPN client software on an user machine??Thanks in advance for your help
Resolved! Allow DMZ to the Internet
Is it a good idea to allow DMZ devices access to the Internet, ie:nat (dmz) 1 access-list dmzoutObviously they are accessible from the outside using static nat's but should they be allowed to initiate traffic to the Internet?
I have a VPN to VPN connection from a remote property to my corporate office. The remote site has a PIX515E. Every 20 minutes clients at the remote property lose connectivity to the corporate office. If I attempt to ping the inside interface of th...
Is there a way of parsing syslogs from a context to the Management context ??(to avoid establishÃng L3 connectivity to each context, NB! The asa is running Transparent). This because transparent mode doesn't support shared interface (as it could hav...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 10 | |
| 7 | |
| 7 | |
| 1 | |
| 1 |
