I am trying to clear out all the trustpoints on my ASA to reconfigure the ASA phone-proxy. However, I cannot remove the ctl-file asdm_CTL_File.When I enter the command clear configure crpyto ca trustpoint I receive this error.ERROR: The trustpoint ph...
I've setup a VTI on two 2821 routers which both have ZFW deployed on them. Without ZFW on the VTI works between the two routers and all traffic passes freely. When I turn on ZFW (basic FW using the wizard) no traffic flows over the VTI. The VTI is up...
Hi, I'm trying to determine if you can have a 2-gig Layer-3 Port-channel going thru an IPS 4260 appliance. See attached diagram. Is this possible?The client I'm working with would prefer not to break this Port-channel into equal-cost 1-gig links (I d...
I have 2 routers, one remote site and the central site. I want to connect the sites using a public ISP, the isp gives me the connection with a little 4-fasethernet ports so I want to configure my fastethernet interfaces to make a tunnel with PPPoE, s...
I'll be configuring an ASA 5550 for a DR site. Is there a way that I can configure this 5550 to be a failover in case the primary in the main site goes down even though it's on a different subnet?Thanks,John
Is there a method to create a VPN login acceptable use banner on a PIX 515e running 6.3?TIA,Ken
Hello all,I have been attempting to send SNMP traps from our IPS to a management PC, but I don't believe they are being sent. Here is what I have done so far:On the management PC, I have tshark listening on port 162 for any incoming UDP packets. By u...
can i restrict client computer services in NAC solution by using nessus or agent ??
Can these 2 models do LAN failover provided images and licensing are correct? The firewalls are identical except for the show version models, one is the "K8" variant, whatever that is.Thanks!
I have the management address of 192.168.1.1 on my asa5510 and an address of 192.168.1.2 on the ssm-10.Both the mangement of the asa and the ssm-10 are plugged into my switch. I can access the adsm and manage my asa but cannot access the ssm-10 from ...
kindly help me out to understand some concept of NAC as its very urgent:1) what does actually hapens before the user provide the credentials to NAC, how DHCP handle the host either NAC give it bogus ip....etc2)if the user is authenticated and scanned...
Hi allIpsec, L2L, in configuration I set 8h, on both side IKE Peer: x.y.z.w Type : L2L Role : initiator Rekey : no State : MM_ACTIVE Encrypt : 3des Hash : SHA Auth : preshared Lifetime: 28800 Lifetime Remaining: 24897but in logs, keys are changing in...
Just upgraded my IPS4255 to version 7.0(1)E3. No problem with the upgrade. Did notice in IDM under sensor health dashboard the application log is now 96%, but it is still "green." Does this clear out on it's own or is there something I have to do man...
I have had a good look on CCO and it seems that if the pair of PIX firewalls are less than 6-feet apart then use the serial-based failover. Since the ASA doesn't have this capability is this still the recommended way to deploy a failover pair of 515'...
Hi--First time poster so please go easy... I'm having what I think is an issue with my ASA config. I'm trying to add a DMZ and its not working. My network is somewhat unique in that I have a requirement to use all public IPs for all interfaces. so no...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 05-26-2026 07:54 AM | ||
| 05-02-2026 06:09 AM | ||
| 04-30-2026 12:46 AM | ||
| 04-24-2026 07:04 AM | ||
| 04-22-2026 11:56 AM |
