Network Security

Asa 5540 CPU Usage

Hello, I've got a 5540 that firewalls my production lan enviroment. I monitor the asa with asdm and i am constantly watching that the cpu usage is over 80% even though there are not a lot of active vpn's. Does anyone have some tips on how to make wor...

Configuring crypto ipsec transform set

when configuring a crypto ipsec transform-set command, how many unique transforms can a single transform-set contain

IPS configuration

I currently using an IPS ASA 5500 AIP . Because i am new to this product so does anyone have any baseline for configuring of this IPS. Can share the knowledge. Thanks

How to Bundle two FWSM within the Catalyst 6500 Switch to achieve 10G

We are building a new setup, this new setup entails bundling two new firewall service modules to produce 10 Gbps.Currently, we have two distribution switches ds03 and ds04, in each of those distribution switches , we have two FWSM and one ACE module ...

Cannot reach Inside Interface of ASA through L2L Tunnel

Hi AllWe have a site to site tunnel running between two sites SiteA and SiteB from both the sites we are able to ping devices internally in the network but not to the inside interface of the ASA.I have enabled the management interface as the inside i...

Resolved! Redirect all traffic from remote to central site

I have the following connectivity.PIX A, PIX B and PIX C is connected to internet. There is a VPN tunnel from PIX A to PIX B and another tunnel from PIX B to PIX C. VPN tunnels are configured and from A-PIX network I can access B-PIX local network. I...

Help Require - Security Context issues

Hi Techies,I have been assigned project for setting up the security contexts on PIX firewall.Please see the below tech details:I have created two contexts i.e. Admin & CustA. I have decided to share the Outside interface between two contexts. I have ...

Upgrading an ASA to version 8

I'm interested in trying out version 8 on an ASA - does anyone have any comments on how much risk there would be in upgrading a remote ASA to ver 8 from 7.24? I have three standard site to site VPN's; two to PIX's running 6.35 and one to a router run...

Ipses not established between Pix6.3 and 2611(12.4)

Hi. I want to create a ipsec vpn between 2611 and pix ( pix is not on my side ). I have this configuration on 2611.crypto isakmp policy 10 encr aes 256 authentication pre-share group 2crypto isakmp key xxxxxxxxxx address y.y.y.y!!crypto ipsec transfo...

GRE through ASA

Hi, I am trying to understand how ASA treats GRE traffic. I have a application that needs to set a GRE tunnel between two (internal) WAN acceleration devices across Internet via IPsec VPN, and polycom video traffic is carried by this GRE tunnel for W...

high availablility firewalls and edge router

We have two core 6509 switchs running HSRP.We have two firewalls in active/standby roles and want to implement a high availablility structure with the core switches, firewalls and edge router.In order to do this, I believe the inside interface of eac...

Resolved! Pings through a PIX/ASA 7.x

Hi, With icmp inspection turned off and " access-list inside permit ip any any " on the inside interface (access-group inside in interface inside) and "access-list outside permit icmp any any echo" on the outside interface (access-group outside in in...

ASA 5505 - ICMP not responding

I am configuring an ASA, but I have no respond when I try to ping to any outside IP address. I have already checked the commands related to ICMP and I have already set those commands.Is something left still ??? this is the sh run file.....ciscoasa# ...

Resolved! Upgrade firmware on ASA?

I am familiar with upgrading firmware on Cisco routers but I am trying to update the firmware on an ASA - I downloaded the firmware and have it on the flash of the device but I don't see a line in the running config that calls out the image at boot l...

Monitoring Center for Performance 2 GRE IPSec

Hi, guysWould you please tell me if "Monitoring Center for Performance 2" as it is bundled with VMS 2.3 supports monitoring for GRE IPSec?I know for sure that "Cisco Performance Monitor 3.0", which is bundled with CSM has this functionality.Thanks in...

Network Security

Forum Posts

Asa 5540 CPU Usage

Configuring crypto ipsec transform set

IPS configuration

How to Bundle two FWSM within the Catalyst 6500 Switch to achieve 10G

Cannot reach Inside Interface of ASA through L2L Tunnel

Resolved! Redirect all traffic from remote to central site

Help Require - Security Context issues

Upgrading an ASA to version 8

Ipses not established between Pix6.3 and 2611(12.4)

GRE through ASA

high availablility firewalls and edge router

Resolved! Pings through a PIX/ASA 7.x

ASA 5505 - ICMP not responding

Resolved! Upgrade firmware on ASA?

Monitoring Center for Performance 2 GRE IPSec

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

GeoLocation IP Package Download In 7.4.2 FMC

Cisco FDM High availability

ISA 3000 I/O contacts for red light kill switch ?

ERROR(567): No database files are available on Cisco Security Manager

CSSM On-Prem with FTD on FMC

Adding an FTD with existing Config to an FMC

Can ASA5555 License transfer to Cisco Firepower 2100 ASA?

ASA to FTD migration

FDM1120 Management Interface IP Address

OSPF Passive interface in FTDs