Hi;How many interface should be reserved in the ASA A/A setup for inside and for outside ?Thx
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(3) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,618) -
Cisco Bugs
(54) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(149) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,163) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(40) -
Cisco Secure Firewall Management Center (FMC)
(221) -
Cisco Secure Firewall Threat Defense (FTD)
(272) -
Cisco Security Cloud Control
(16) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(19) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(46) -
Cloud
(1) -
Cloud Provisioning
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(264) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(37) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,579) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(324) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(93) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,589) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,789) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(12) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(21) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(9) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(4) -
Security Management
(642) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(5) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(28) -
VPN and AnyConnect
(1) -
Vulnerability Management
(46) -
WAN
(8) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hi,We have PIX 501 configured with PAT for general Internet access, no ACL applied to inside interface. Sometimes some of the users cannot access services on the Internet (ports 80, 25), they can access those services on the LAN so I think the PIX is...
Hi all, I use Catalyst 6513 + IDSM-2, I also use Cisco Work VMS 2.3 to manage IDSM-2. Now, I want to configure whenever IDSM-2 sees an attack, it sends snmp or some thing like that by syslog to VMS server. If you see unclearly, you can ask me. Duy K...
Hi,I was trying to configure outside nat to allow a host on the dmz (FLSM) interface to telnet to a host on the inside interface. I gave up and called cisco tac. They were able to get it to work for me by combining a nat 0 command with outside nat. B...
i read in the cisco documentation that if i want users on the outside interface (lower security level) telnet to inside interface (higher security level) we should use static with access-list to allow the traffic. Now this is called translation, righ...
Hello all, I am having an issue with one of our VPN's that was recently setup and I am seeing ICMP errors. When I send a simple ping test to the destination IP, I am seeing the following messages while running the debug log-viewer:208.x.x.x|Built ICM...
Hello,I have a softphone using SIP on port 5060. I check the PIX 501 (version 6.3(3), using show conn, but all I can see is the connection to the voice gateway on a different port (eg.29051). If I use the softphone on an internet connection without a...
Hi,We have a customer that is having problems with one specific client-server application. The app protocol looks kind of like HTTP on the wire, but isn't. The server is on the Internet, and the client is behind the 'inside' interface. Whenever th...
Hello,My client has a ASA5520 with a SSM IPS module. I never worked with the IPS module and have been asked to set this up. I upgraded the IPS to 6.0x and IPS signatures (S266), but I do not see any alerts or blocks from the IPS. I have run NMAP s...
Hi,Is there any option that I can get the output of show connection to syslog server.
I've upload a new flash image to my ASA and can see it when doing a "Sh Flash" command.However, we rebooting it is not used. What is the proper procedure to get it to use an image file?Would I use...boot system flash:/asa722-k8.binWe are currently ...
Resolved! Regex string for SMTP command
Hi Everyone,I would like to create a signature to look for SMTP "command mail from:<>". Is this the right regex statement to look for this traffic?[Mm][Aa][Ii][Ll] [Ff][Rr][Oo][Mm][:][<>]
We are running an ASA5520 on 7.2 (2) code and are experiencing underruns/overruns on all 3 of our firewall interfaces. The speed and duplex settings are correct and there are no collisions, input or output errors. Below are the interface definition...
Hello,We must used the feature DNS rewrite with pix 515E os 7.2.2 but it doesn't work.I just use this static rule :static (inside,CAG) 172.21.250.1 170.250.249.8 netmask 255.255.255.255 dnswhen i'm connected to dmz cag i make a dns request to dns ser...
Hi,i need alittle help with my PIx 515. we have a bunch of current acl's for a segment of our network and i need to put one in with a range of udp ports. i cant figure this one out, even looking at the command sequence. i have many with one port o...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 05-06-2026 02:31 PM | ||
| 05-05-2026 09:59 AM | ||
| 05-02-2026 06:09 AM | ||
| 04-30-2026 12:46 AM | ||
| 04-24-2026 07:04 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 9 | |
| 2 | |
| 2 | |
| 1 | |
| 1 |
