Network Security

Resolved! Shared Interface between FWSM Contexts

Is it possible to setup an Active/Active FWSM Configuration where there is a shared interface between both Active contexts.There will be 2 x 6506's with a FWSM each. I want to have an Active Context on each FWSM in the 6506's. And I want to make a sh...

WebVPN (Split Tunnel w/ extended ACL)

ASA 7.2.3 code / ASDM 5.2Yesterday I converted a customer from the WebVPN portal to the SVC client (sslclient-win-1.1.4.179). I must of spent 2hrs trying to figure out why the split tunneling wasn't working. I had the acl configured for the tunnel n...

Resolved! ASA compatability with other branded firewalls

HiWe are looking at replacing our existing internet facing Watchguard firewalls with Cisco ASA. The Watchguard currently has a number of sit to site VPNs with variously branded 3rd party firewalls.These will need to be maintained. Is the ASA compatib...

Resolved! asa 5510 - Routing failed (inside to dmz)

Hi All,I'am facing somehing not very hard but i cannot figure out how to solve it !The actual configuration let me access :- From Inside to internet- From Outside to DMZ (one web server)But i cannot access my web server from the inside interface, i g...

ASA 5520 Rules

I've got two 5520s that I'm working at configuring. Looking for a recommendation or a link to the answer. I see in ASDM it will automatically create groups for ports. Would it be better to have a seperate rule for each port or do the groups.

Resolved! IPS in datacenter

IPS 4270 connected to distribution in datacenter, each with each 6509, now the question is how will redundancy/failover works both in inline and out of band usage.

asa 5505 no translation group

Hi,I have two asa 5505 that are failing to communicate with each other.When i try to communicate (http) with a host on the other network, the asa on that side replies:No translation group found for tcp src outside:192.168.100.20/44710 dst inside:192....

ASA5505 -- inside interface routing

I have two networks behind my ASA 5505 inside interface -- 192.168.1.0/24 is directly connected, but 192.168.200.0/24 is connected via router. I added a route to 192.168.200.0/24 in the ASA, and I can browse web sites and initiate PPTP sessions to a...

Resolved! PIX 515 on standby

Where would I find step by step directions for the procedure to copy the saved tftp config from a production 515E to a hot spare 515? Thanks.

IPS 6.0 inline on IDSM2

Hi All, We are trying to deploy inline vlan pair method on IDSM2 with the below setup1)IDSM Side Configservice interfacephysical-interfaces GigabitEthernet0/7 no descriptiondefault-vlan 100subinterface-type inline-vlan-pairsubinterface 1 description...

Resolved! Restrict Remote VPN user

Hi,We have estlablished mutiple Tunnels which is connected our ASA and remote VPN user can access all connected remote network resources. Now I want to restrict them and give them access only to few sites. I want user A able to use network resources ...

IPS and Virtual Sensors

Hello.I am looking to put in an IPS. I would like to monitor two segments, but read this in the docs... "To avoid definition ordering issues, no conflicts or overlaps are allowed in assignments-you assign interfaces, inline interface pairs, inline VL...

Multicasting in DMVPN

Dear AllI had created a DMVPN between 4 diifreent site Hub-Spoke topology, i am using 3com ip phones but i am facing one issue, the issue is i am not able to join confrence (Multiasting) between the spokes, from the hub i can hear both the spoke, but...

Resolved! intra-interface routing on ASA

Hi,Well, I'm a bit confused with the command "same-securty-level permit intra-interface"I configured an asa, with this command, and and just try to use the inside interface as a "gateway". I mean : my packet is sent from my station 192.168.1.2 to the...

Resolved! ASA load balancing to two routers

Hi All, Is there anyway I can load balance accross two routers.I have an ASA with two routers attached each of the routers has two instances of HSRP running on them each with its own IP address, each router is the primary for one of the HSRP instan...

Network Security

Forum Posts

Resolved! Shared Interface between FWSM Contexts

WebVPN (Split Tunnel w/ extended ACL)

Resolved! ASA compatability with other branded firewalls

Resolved! asa 5510 - Routing failed (inside to dmz)

ASA 5520 Rules

Resolved! IPS in datacenter

asa 5505 no translation group

ASA5505 -- inside interface routing

Resolved! PIX 515 on standby

IPS 6.0 inline on IDSM2

Resolved! Restrict Remote VPN user

IPS and Virtual Sensors

Multicasting in DMVPN

Resolved! intra-interface routing on ASA

Resolved! ASA load balancing to two routers

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

How to Specify a PAC File on FMC Policy for Secure Client

CSCwk14305 - "Unable to unlock or revert SED" observed after rebooting

Assign Multiple IPs to a Single BVI on Cisco FTD in Transparent Mode

configure SNMP inform retry and duration on FMC

FTD not receiving SGT inline

Help setting up FTDv in Azure

How to configure Port Forwarding on FTD

Compatibility matrix for FMC and SFR

Copy configuration from source FMC A to target FMC B / Parallel build