Hi All,I am a newbie in PIX!! (now a days its ASA).I am creating IPsec tunnel from PIX with Checkpoint NG R55.I have config ready with me for pix but having one doubt about NAT & NO-NAT. I am configuring NAT tunnel.In PIX I have configured VPN ACL as...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(3) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,623) -
Cisco Bugs
(54) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(149) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,163) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(42) -
Cisco Secure Firewall Management Center (FMC)
(231) -
Cisco Secure Firewall Threat Defense (FTD)
(281) -
Cisco Security Cloud Control
(16) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(19) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(46) -
Cloud
(1) -
Cloud Provisioning
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(264) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(37) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,580) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(324) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(93) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,592) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,791) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(12) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(21) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(9) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(4) -
Security Management
(645) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(5) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(28) -
VPN and AnyConnect
(1) -
Vulnerability Management
(46) -
WAN
(8) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I have an ASA 5505 at home and I am currently staticly NATing my internal resources to the outside world successfuly. My only problem is that when I try to access my internal resources by name from the inside, they resolve to the IP of my external in...
I am setting up a brand new PIX firewall. I am wondering if there is a quick way to import the configuration from a linux machine running iptables into the PIX 325. If I save off the config as a flat text file is there an import feature for the pix? ...
Hi. I am having an issue. I have a PIX 515E w/FO. We run an ERP that has a VPN directing all ERP traffic to our hosted site. We have used this for over 5 years and the ERP vendor is upgrading the systems we use. TO do this, we are running Production ...
Hi All,We have a webserver hosted on DMZ. A Static PAT on port 443 results in intermittent connection (Internet explorer displays Page cant be display immediately and sometimes works fine) while a STATIC Port redirection from 444 port makes the webse...
I need to remove one NAT which is there, through GUI it wont allow my saying some security rule warning. i also tried to disable security rule and tried but still couldnt do it. now i was thinking to remove from command line. the NAT is shown belowst...
I have a static nat table with this rule( i have put in X to cover my publci ip for security reasons for this post)static (inside,outside) 65.91.XXX.XX 192.168.211.1 netmask 255.255.255.255 0 0How do I remove just that one line without clearing the e...
i have 2 asa running active/passive connected to a 2 core switch running hsrp. i need to have 2 coonections on both the asa's. one going to the core1 and another going to core2.question. Is it possible to have 2 asa interfaces to have single ip addre...
Hi,can any body tell me what is the command to allow traceroute in pix.
Hi,I've Cisco devices ASA 5505 ver 7.2 software. The issueinvolves SNMP, specifically the monitoring of traffic counters tocreate traffic graphs (MRTG). I can poll the device and Iget a response. I can list interface descriptions/ip address etc.Every...
Hi,I have 2 questions related to Remote VPN authentication:1- I wold like to check whether I can integrate remote IPSec VPN authentication with an external AAA server or not, because I couldnt find such option when creating users in the firewall. If ...
Now I can reach the firewall from internal network. But still don't get internet access nor can I see dmz.CiscoASA# show routeS 0.0.0.0 0.0.0.0 [1/0] via xx.xx.xxy.1, outsideC 10.16.0.0 255.255.252.0 is directly connected, outsideC 10.16.52.0 255.255...
HiI'm not exactly sure if I'm thinking about this right, could you please advise?I have two PIX's running in statefull active/standby failover. I want to upgrade those from 7.0(2) to 7.0(6).I figured out that what I need to do is:- go to the standby ...
i have a Cisco asa5505 firewall running code 7.2. I uploaded the file (sslclient-win-1.1.3.173.pkg) into the disk0 without any problems, but when i issue "svc image disk0:/sslclient-win-1.1.3.173.pkg" i get an error message saying... ERROR: Not a val...
Resolved! DNS with CBAC
Is it possible to do dynamic DNS rewrites using CBAC? I'm looking to do the same type of inspection done in PIX with the 'dns' tag at the end of a static or nat statement with existing IOS hardware.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 06-01-2026 11:04 PM | ||
| 05-26-2026 07:54 AM | ||
| 05-02-2026 06:09 AM | ||
| 04-30-2026 12:46 AM | ||
| 04-24-2026 07:04 AM |
New solutions
