Network Security

Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

“Join

 
Labels

Forum Posts

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority.  The migration tool is available for download to migrate the configuration on the on-premi...

gopaks by Cisco Employee
  • 317 Views
  • 0 replies
  • 4 Helpful votes

I have a subnet 172.28.85.x on my pix dmz interface. below mention subnets are on my inside interface.172.28.64.x172.28.78.x172.28.32.x172.28.92.xI want my Inside to access the dmz and dmz to inside at the same time.High to low and low to high any si...

Hi,Looking to impliment VLANS as per diagram.ISP->Router-->ASA5510--->Switch(L2 2960).Want to create some 25 VLANs and don't want to allow communication among VLANs.Just want to allow internet access to all of the VLANS.How should I meet this??Reg,Su...

itindia by Level 1
  • 1311 Views
  • 6 replies
  • 0 Helpful votes

Hi Guys,I am seeing a very high packet drops on the ASA interface. I have verified that duplex settings are fine and there are no errors on the interface. Any idea why these drops are comingfw01# sh interface serverInterface Ethernet0/1.2 "server_vla...

Hello Experts,Does multiple static route to same destination with a different metric on a PIX 515E works same way as the floating static route on a router ?For Example(Can u use follwoing static route and obtain same results as the floating static ro...

routeinet by Level 1
  • 472 Views
  • 1 replies
  • 0 Helpful votes

I am using an ASA-5540 strickly for IPsec VPN lan-2-lan tunnels and will never be NATing outbound as we have a public Class-B address space.Since I'm never going to be NATing, can I disable the nat 0 and no-nat funcationality completely so that the A...

jkeeffe by Level 2
  • 1015 Views
  • 4 replies
  • 0 Helpful votes

I am running a PIX 515 with IOS 7.1.2Right now we use the group-authentication to authenticate remote cisco clients when VPNing into our PIX but have no control when a user leaves the company to deny him VPNing in unless we change the group password ...

HiWhe have a ASA with three interfaces:One outside with adresses 193.55.96.XOne DMZ with addresses 192.168.59.XOne inside with addresses 172.36.253.XOur nat translation are :on DMZ interfacestatic 192.168.59.XX any outside 193.55.96.XX....on inside i...

cnrs-dsi by Level 1
  • 352 Views
  • 1 replies
  • 0 Helpful votes