So I was poking around my ASA5505 today and noticed the port I have connected to my 1242AP had a ton of switch ingress policy drops. ASA's been on for about 10 days but there are around 12 billion of them.I read something about the vlan interface na...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(3) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,619) -
Cisco Bugs
(54) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(149) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,163) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(40) -
Cisco Secure Firewall Management Center (FMC)
(223) -
Cisco Secure Firewall Threat Defense (FTD)
(276) -
Cisco Security Cloud Control
(16) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(19) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(46) -
Cloud
(1) -
Cloud Provisioning
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(264) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(37) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,579) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(324) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(93) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,589) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,790) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(12) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(21) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(9) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(4) -
Security Management
(644) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(5) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(28) -
VPN and AnyConnect
(1) -
Vulnerability Management
(46) -
WAN
(8) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I have a need to disable the stateful firewall in the Cisco vpn client when users connect to our ASA. Is there a way to do this from the ASA? I know there's a client-firewall option under group policy, but the only thing I can do is none, opt, or req...
If I have an interface that's addressed like:Inside: 192.168.2.1 255.255.255.0DMZ: 192.168.1.1I know that I don't need a route for the inside network, but the ASA allows me to put a route for the DMZ:route DMZ 192.168.1.0 255.255.255.0 192.168.1.1I k...
Resolved! NAC local DB user
I am new to the NAC solution but I have a VPN SSO Layer 3 VG INBAND MODE configuration that works with the VPN solution and now I want to expand my current config to do more. I am trying to have a conference room that will have ports that are placed ...
Head office with one Router (2851) connected to the LAN and several site-to-site VPN on the outside Ethernet to the branche offices.I need to improve a kind of High-Availability ONLY on the head office.I added a second Routers (2811) connected with H...
Resolved! Cisco ASA AIP SSC-5 (ASA5505)
Hi,I read in newest asa release code 8.2 new features support for AIP SSC-5, digged deeper and it seems cisco had released the AIP SSC-5 for the ASA5505 firewall.. but I do not seem to find a vendor to purchase one. Is this card yet available in the ...
eg: outside interface traffic usage ... updated every second instead of default (10?)
Resolved! Flood signatures
Hello all!I try to set up Net flood signatures. I enabled following signatures - 6902/0, 6903/0, 6910/0 and 6920/0:signatures 6903 0 statusenabled trueexitexitsignatures 6910 0 statusenabled trueexitexitsignatures 6920 0 statusenabled trueexitexit ...
Hi,Would it be possible that a QoS tagging is lost as it traverses between directly connected interfaces of two switches.What possible reason a dscp marking is stripped on the ingress interface?Thanks.
Hi all,I'd like to ask a help.I have a Lotus Notes Mail Server that is at Inside Network. I am able to receive any email and make MX queries for any domain from Lotus Notes Server. However I unable to send email for any destination.Someone know what ...
Hi, I have a FWSM in trasparent mode and some routers in "not protected" vlan, between FWSM and MSFC. For the server in the "protected" vlan, is better to have only the default route to the MSFC or to have some route specific entries to the routers ?...
Hi Experts,I would like to seek your help regarding my problem with ASA5505. My setup is:Internet--ASA5505--Switch--Server/PC.When the server is directly connected to internet using 2 lan card, yahoo mail can be received thru MDaemon mail server.But ...
Hi All,I have CISCO ASA with IPS20. I am installing the IPS. Initially I registered the IPS. I didn't received PAK along with the Device. I registered online. It is okay now. Do I have to renew this every year to get the signatures, like how we do fo...
Hi,I hope you can spend a little of your time helping my fix this lab scenario.What my goal is for my laptop on 192.168.3.20 (inside of pix) to be able to connect to 10.100.0.61/27 which is a loopback on my pretend New York router.I have the followin...
hello,in my connection Remote VPN there requred route or we directly give connection from ASA 5540. is it possible.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 05-05-2026 09:59 AM | ||
| 05-02-2026 06:09 AM | ||
| 04-30-2026 12:46 AM | ||
| 04-24-2026 07:04 AM | ||
| 04-22-2026 11:56 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 9 | |
| 2 | |
| 2 | |
| 1 | |
| 1 |
