Dear All,we are having problem as end users have a lot of spyware/walware and have illegal proxy install in the lan.One of the idea is to deny HTTPS or "CONNECT" type http, at the "inside fwsm/asa" to any ip-base url destination. Since the ip-base ur...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,542) -
Cisco Bugs
(33) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(140) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(11) -
Cisco Secure Firewall Management Center (FMC)
(58) -
Cisco Secure Firewall Threat Defense (FTD)
(82) -
Cisco Security Cloud Control
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(44) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(259) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(27) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,573) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(91) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,563) -
NGIPS
(1,873) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,774) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(631) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hello I have two ASA 5510 in active standby configuration and it workes quite fine. When a failover occures, the secondary unit keeps active, even if the primary is healthy again. Is it possible, to *automatically* make the primary the active one, if...
Resolved! Log Access List - External syslog
Hi All,Has anyone ever setup their ASA to log to an external server what traffic is going flowing thorough access-lists?I dont want to have to analyse the traffic with capture as i would prefer to let the logs build up over a couple of weeks. I want...
Will the CSA agent 6.0.0.220 work with Linux 32 bit and 64 bit Kernels??
In the following doc:http://www.cisco.com/en/US/docs/security/asa/asa80/getting_started/asa5505/quick/guide/5505GSG.pdfPage 150 is not clear. In the example, they have test for local networks and 209.165.200.225 for remote. I am not sure what is tes...
I seem to recall having some issues with this a while back (like 5 years ago) and am curious if this is still an obstacle when configure on a ASA 5520.The ISP has given me a block of 8 IP addresses. Is there any trouble with PATing the IP addresses ...
what basic requirements are needed to allow multicast traffic through a routed(not transparent) 5505?outside users (source) are accessing inside (destination) server running multicast application.FYI, server's inside IP address uses a public IP (not ...
I am trying to configure an IPS sensor for the first time and need to configure an IP address. I am confused about what IP address to use. I am probably over thinking this, but does the sensor get an IP address in the same range as the GI0/1 IP add...
Hi,This was all working so I'm not sure what has changed.We have a windows 2003 FTP server that we can access internally fine. Usually we can access over the Internet using it's public IP, but it has stopped working.I have the following rules:access...
I am in the process of migrating web services from Checkpoint to ASA. Can I NAT the source address of incoming packets destined for a web server on port 80? The intent here is to be able to migrate a webserver at a time. NAT'ing of the source addr...
Hi!MY client has ERP servers and ISA servers in a single DMZ but now wants to place the ERP Servers on one DMZ (say DMZ1) without changing their IP Subnet and place the ISA Server on another DMZ (say DMZ2) and a diffrent IP Subnet. The problem is tha...
will the following NAT config on an ASA conflict?First part is for one to one NAT for inside address 172.16.1.1static (inside,outside) 192.168.1.1 172.16.1.1 netmask 255.255.255.255access-list outside_in permit tcp host 10.10.10.10 host 192.168.1.1fo...
does a ASA 5510, with 7.2 (10) code support dead peer detection for site-to-site VPN, not SSL VPN profile?thank you, Kevin
Hi,I want to allow incoming trafic on port 444 to be NATed to an internal host. I also want to allow this traffic using ACL. Seems fairly simple but I can't figure it out.The important part of my config:xxx.xxx.xxx.xxx is my external IP address. : Sa...
is there a way to automate copying ASA config files to a tftp server?i do this for our IOS boxes ... when a config , in-house code kicks in and uses CISCO-CONFIG-COPY-MIB to grab startup-config and checkpoint it into a change treebut as far as i can ...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 09-30-2025 03:35 AM | ||
| 09-26-2025 12:33 AM | ||
| 09-24-2025 06:11 PM | ||
| 09-23-2025 04:54 AM | ||
| 08-29-2025 08:17 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 12 | |
| 5 | |
| 2 | |
| 1 | |
| 1 |
