I have an ASA5510 and have it configured with the STATIC NAT entries for Web servers in MY DMZ but when I add the DNS to the end of the STATIC rule it does not modify the DNS reply so that the nat'd address is sent to an outside client. I have done ...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,567) -
Cisco Bugs
(38) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(147) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(23) -
Cisco Secure Firewall Management Center (FMC)
(108) -
Cisco Secure Firewall Threat Defense (FTD)
(135) -
Cisco Security Cloud Control
(6) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(261) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(30) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,574) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(91) -
Network Security
(2) -
networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,570) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,776) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(8) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(640) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
This seems pretty juvenile, but how do I allow traceroute from the inside to the dmz. My access list has only the implict rule to allow all higher secured interfaces access to lower secured interfaces. So, all traffic from the inside is being allowed...
All,I am getting this error message on my Kiwi Syslog:Pix-3-106011: Deny inbound (No xlate) udp src inside: 10.5.5.1/161 dst inside 10.232.2.1/2858I am pretty sure this my device is sending SNMP packets over to my network monitor server.Any help woul...
one of my student changed login info on our lab vpn concentrator 3005.how to reset the login name and password ?the version is 4.1.7.thanks
Hi,We need to send the access_log from our squid servers to the MARS.The squid log file is in Apache normal log file. For example, a line will look like this :1.2.3.4 - - [24/Nov/2006:17:08:59 +0100] "GET http://www.club-internet.fr/? HTTP/1.1" 200 2...
I have a webserver(192.168.10.2) on a DMZ network off of a ASA 5510 7.1(2). It needs to communicate with a MSSQL server(10.10.4.48) on the internal network. What ports, if any, other than tcp 1433 do I need to allow this to happen? I have tried tc...
We have a PIX with 3 interface, 1. Inside, 2. Outside, 3. DMZ. In the DMZ there is a VPN Concentrator which has a site-to-site VPN with another site. How should I write the nat statements so that all VPN traffic is not natted, but everything else i...
Good Morning,I will preface this with the fact that I know that the network needs to be redesigned. This is not my animal, I have just walked into a disaster. Re-design is not possible at this point, but some secutity is needed. The network is compos...
Resolved! FWSM VF License
Dear Sir:FWSM includes two free VF license, The admin context must use a VF license?
I am currently reading up on this and have a few queries: -1)what does in-band & out-of-band mean?2)what will NAC appliance do out of the box?3)how is it integrated with Active Directory?4) Where can i get a good resource on deployment and configurat...
I am using a FWSM in transparent mode on a 6509 and I am running into issues using the Microsoft VPN client with NAT. Currently, I have NAT setup on my router and when I try to VPN to an outside VPN server I cannot get authenticated. If I try the ...
Hello!I saw on Cisco.com that problem related with HTTP inspect ha already been resolved on release 7.1(2)http://www.cisco.com/en/US/products/sw/secursw/ps2120/prod_release_note09186a008062560f.htmlResolved Caveats - Release 7.1(2)CSCsc51939-Correcte...
Hi,We are in the process of migrating from 506e verion 6.3 to a 515e Version 7.0(5). We have everything up and running now except for one remote site which is on a 172.16.0.0 network and connects via ADSL to an ISP then to an IT company who say they ...
We have five failover sites that are connected to the main site via the Internet. They are configured with IPSEC and a gre tunnel for end-to-end connectivity to the remote site. Two of the sites have wireless DSL at the remote end and they will not s...
I have got at work this sensor with two interfaces only, I have been asked to check thatIDSWORK# show versionApplication Partition:Cisco Systems Intrusion Detection Sensor, Version 4.1(1)S47OS Version 2.4.18-5smpbigphys-4215Platform: IDS-4215one inte...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 11-24-2025 12:53 PM | ||
| 11-13-2025 12:52 PM | ||
| 11-03-2025 09:48 AM | ||
| 10-30-2025 12:44 PM | ||
| 10-23-2025 07:14 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 4 | |
| 2 | |
| 2 | |
| 2 | |
| 2 |
