Can I configure an ASA to use DNS to lookup the IP address of a URL/hostname contained in an ACL? eg:access-list ACL-1 extended permit tcp any host www.cisco.comI can see that this may result in some performance issues, but is it possible?I'm ok with...
Network Security
Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,506) -
Cisco Bugs
(30) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(810) -
Cisco Firepower Management Center (FMC)
(2,907) -
Cisco Firepower Threat Defense (FTD)
(3,159) -
Cisco Press Cafe
(1) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(318) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(90) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,552) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,766) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hi,I had a working site-to-site VPN until I had to change the external outside interface ip address on one of the ASA's. Now it's not working anymore.When I try to generate traffic from one site to the other, nothing gets to the other side.Suggested ...
Hi We have cisco asa 5505, I want to capture all interface traffic in a my MRTG..pls. guide how do I configure cisco asa for community string in read mode for the same.
Resolved! DNS through an ASA
folksme again!i'm trying to allow DNS through an ASA 5540 but though i have a rule allowing the source to the correct destinations with 'domain' as the service the traffic is being deniedthe traffic is udp whilst the domain service is TCPi've tried a...
Friends, i have ASA 5520. I opened pop3 and smtp port for mail. But, from outside network (internet) when i type my ASA's public IP address in the pop3 and smtp mail works fine. But inside in my network in this case mail is not working. ISP staff to...
Hi All,I have a Cisco 7600 switch with a FWSM installed on it and how I can traffic shape in FWSM?
Hi, i have a IPSEC VPN tunnel on a 7206 router. Concern is that we want to monitor the status of the tunnel, with following points...- Other end is not willing to give us the ICMP access, so we cannot check the status using ICMP.- We have enabled the...
do asa or fwsm support context in a way 1 used for routed and the other one for transparent.Also do fwsm support DMZ in transparent mode.
Hi:is possible to configure something like a PAT from the external interface (outside) to internal servers using a Firewall PIX.Regards.
Hi,I have just created a local account on the ASA with zero priviledge. On the ASDM it says for No ASDM, SSH, Telnet or console access I must configure the AAA authenticate console command.What/where is this?
Hi, thanks in advance for your help.I am working with an asa 5510 which has an CSC module. Seems to work properly. But i have a problem. We have some web sites prohibited in the company. Between them is www.youtube.com. We need to allow access to thi...
There is a web server located on internet. the users first connect to the server then an ActiceX control is downloaded into the user and that control is installed. the users then enter its credention and gets authenticated. once the user is authicate...
1, Do asa support VPN in transparent mode.2, What is the benefit of using transparent mode over routed mode.
I have a PIX506E running version 6.3.x in a branch office and an ASA at the central site running version 7.2.x. We have installed a second ISP at the central site and we'd like to configure a backup/redundant tunnel from the branch office to the cent...
Resolved! NAT translation on an ASA for a VPN
have a vpn to another company and they are using the same addressing as us so I need to do some double natting. Not sure of how to do this for a vpn. Basically I want anything exiting from site A subnet of 10.1.1.0/24 to get translated to 10.6.7.1. ...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-09-2025 06:38 AM | ||
| 07-09-2025 06:36 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM |
Top Solution Authors
| User | Count |
|---|---|
| 8 | |
| 7 | |
| 7 | |
| 1 | |
| 1 |
