I need to create a site to site vpn tunnel and was told that its not a good idea to specify the tcp ports on the associated acl. The reason had something to do with the stability or reliability of the tunnel. From a security standpoint, I would think...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(3) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,624) -
Cisco Bugs
(54) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(149) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,163) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(44) -
Cisco Secure Firewall Management Center (FMC)
(234) -
Cisco Secure Firewall Threat Defense (FTD)
(284) -
Cisco Security Cloud Control
(16) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(19) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(46) -
Cloud
(1) -
Cloud Provisioning
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(264) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(37) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,580) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(324) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(93) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,594) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,791) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(12) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(21) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(9) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(4) -
Security Management
(645) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(5) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(28) -
VPN and AnyConnect
(1) -
Vulnerability Management
(46) -
WAN
(8) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Resolved! PIX 515E
We are currently using PIX 515E with OS 7.0. We have some problems with email traffic and suspect the firewall is doing some funny things, so we decided to upgrade to OS 7.2. We have a redundant firewall with the same model and same configuration wit...
Is there a command that will display the matches or hit counts that have qualified against a "static" statement on the PIX or ASA?Thank You
Is it possible to use ASA 5505 to bridge two networks? I currently have two networks with two different IP addresses and would like to utilise the ASA to bridge between the two networks.I can't seem to find any information on this so would appreciate...
Hi guys ,I am facing some packet drops in LAN after implementation of FWSM context .Please let me know is there any configuration need to be done to avoid this ?Please suggest ..thanks in advance
How to avoid certificate warning message in NAC CCA Agent. Everytime when user login before authentication certificate warning message appears. Please advide how to bypass it.
I have a wierd situation at my customer site. PIX can ping some hosts on remote sites( hosts in the same subnet), but it can not ping others. It can ping default gateway of remote hosts. The next hop router can ping everything. Could it be sume bug i...
Hi,I'm looking to restrict VPN clients on the VPN Concentrator, to those that only have the Windows XP Firewall Installed.In order to do this, I need to select Custom Firewall and specify the Vendor ID and the Product ID.I'm struggling to find this i...
Dear allFrom the attached image you will find I am trying to ping the IP 192.168.1.1 from the PC 192.168.0.10 but I cannot. From the firewall I can ping the whole network but from the users I cannot ping any IP from the subnet 192.168.1.0/24.Please f...
class-map Pol-Lon-Tunnelmatch flow ip destination-addressmatch tunnel-group lon-newyorkpolicy-map Pol-Lon-Tunnel class Pol-Lon-Tunnel priorityservice-policy Pol-Lon-Tunnel interface outsidepriority-queue outside tx-ring-limit 128 queue-limit 2048Guys...
hi,we are currently comparing cisco ips to tippingpoint, i have a cisco ips in front and tippingpoint in the back, so we are checking if cisco ips is missing on a lot of stuff , and currently it is missing on SQL injection attacks and cross scripting...
hiI have a pis 515.suddenly its does not boot. when I pwer on its stop in PCI BUS checking..and I want go for ROMON mode then it prompts for pass 1, 2 check nothing come in.so its hardware related problem.thanksbiplob
Resolved! Which IP SLA probes for LDAP and Radius
Hi,I would like to use IP SLA probes to monitor Broadband customer access.We want to deploy some shadow routers on some Exchange sites to measure customer experience.We are thinking about creating some DNS probe. We would like to test authentication....
After implementation of NAC OOB VG, users are complaining random network loss. Any guess?
HiI am trying to configure a PIX 515E unit with multiple VLANs (each VLAN for each client traffic). I have 2 /29 networks from my ISP and I want to use each IP to each client for their outgoing and incoming traffic. so each client traffic will be nat...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 06-08-2026 11:55 AM | ||
| 05-26-2026 07:54 AM | ||
| 05-02-2026 06:09 AM | ||
| 04-30-2026 12:46 AM | ||
| 04-24-2026 07:04 AM |
New solutions
