All,If I have inside traffic going into the DMZ, would my static nat look like:static (inside,dmz1) 10.0.0.0 10.0.0.0 netmask 255.0.0.0We have several subnets of 10.100.0.0, 10.200.0.0, etc.Thanks,John
All,If I have inside traffic going into the DMZ, would my static nat look like:static (inside,dmz1) 10.0.0.0 10.0.0.0 netmask 255.0.0.0We have several subnets of 10.100.0.0, 10.200.0.0, etc.Thanks,John
I am new to the FWSM and am just getting it installed in our lab for some testing. It is loaded with 3.2(2) and I see the 3.2 is up to 3.2(11) now, and there is also 4.0(3).Is it recommended to move to 4.0(3), or should I stick with 3.2(11), which is...
Anyone know what changed in the new IOS 12.4(24)T for vpn client connections? I upgraded from an older 12.4 release on a 2811 and now the IKE security negotiations fail. The vpn client is version 4.9.01 Thanks for the help
Hi Everybody,I am trying to configure packet capture in ASA 5520 for troubleshooting. I am in the impression that 1. The captured data is stored in the RAM of the Firewall. Is this correct?2. If that the case won't the firewall run out of memory for ...
All,If I have a host of 5.5.5.2/30, I would either have to create a name for each host or create an object group since it's lets you create odd masks. I noticed in the ASDM that you have the option to create any mask you want when creating names, and...
Hi All, I have ASA terminating the VPN clients (remote access or L2L vpn), and if I have SSM installed on ASA (to act as IPS), will this ASA successfully be able to perform real-time spam/virus filtering even for the encrypted traffic that is coming ...
Hi gurus!Not sure if it is right section to ask this question but it is generic one that has to do with the ASA.This is the problem. The ASA is connected to Shaw ISP via a cable modem. We are assigned 4 IPs addresses one of them is physically configu...
Hi,Via the CLI on our ASA 5520 how do I show acrive site-to-site VPN's and reset them to reconnect?There is one in particular that I need to reset.Thanks
Hi,I run a production two-card FWSM cluster in single context mode (Active-Standby).I'd like to use Active-Active configuration, that's why I need to move to multiple-context mode.Do you know any migration procedure? I have two contexts license. I gu...
I have a quick question here I'm trying to do a ftps to port 31 but it isn't working. I was going over the configs and noticed that in the section of fixup protocol I do see one for regular ftp which works by the way but not for ftps. I tried enter...
Can someone please give me a VPN routing 101 explanation.I have a remote client, I tunnel into my network using VPN, and I now have two active adapters:VPN Adapter 10.4.4.31PPP Adapter 76.45.34.211 (Verizon PC Card)My packets leave my device with a s...
Hello Guys,Is there any way to block SSH and allow only SFTP?Thanks in advance
Hi,From the documents Cisco guys wrote on new concept of the IOS firewall ZFW I assume nothing has changed in regards to ACLs and the way of applying them to the interfaces. I am actually migrating from CBAC to ZFW and found out that if I keep my exi...
We have a group using a Polycom Bridge that has always had problems with remote users using hardware devices to connect to the Bridge from off-campus. All devices on-campus and all software clients are fine.We did some testing yesterday, and when we...
It's possible to configure on a Cisco IOS router keep one Remote Access client binding to one IP address withput using AAA external server ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
06-17-2025 04:07 PM | ||
06-12-2025 06:02 AM | ||
06-11-2025 07:59 AM | ||
06-11-2025 06:59 AM | ||
06-10-2025 06:12 AM |
User | Count |
---|---|
6 | |
3 | |
2 | |
2 | |
2 |