all, TCP connections stay open after a VPN user logs out. I don't see anything on "sh xlate" but "sh conn" shows the connections.Is there a "clear conn" command? I been searching but can't find anything.TX
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(86) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,580) -
Cisco Bugs
(39) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(147) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(30) -
Cisco Secure Firewall Management Center (FMC)
(132) -
Cisco Secure Firewall Threat Defense (FTD)
(162) -
Cisco Security Cloud Control
(8) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(263) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(32) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,576) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(322) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(92) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,580) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,777) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(8) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(641) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I want to replace my PIX 501 with a PIX 506e, but I'd like to avoid having to manually reconfigure the 506e to match the config on the 501.Is there any reason why I can't just backup the 501's config and restore it onto the 506e?
I just figured this out yesterday and figured I'd share it because I've seen similar problems posted before.I'm using a PIX515E with OS 6.3(4) and VPN client 4.6 to connect to our corporate site via dynamic VPN.The problem was that even though I adde...
Hi All,I have read some documentation but failed to find out that IDS can support TACACS+ authentication?Am I correct?Thanks.Jianwen
hi all,can anyone tell me that how many vpn tunnels can one pix515e have simultaneously. like i have already set up and established a tunnel (as you see the attached config). on my pix515e we need to have another tunnel created with another partner n...
Hi guys, can we implement vpn on PIX with dynamic to dynamic ip? If have, can give me a link to configure it.Thanks
Resolved! PIX501: Internet access issue
I am having an issue with a new (to me) 501. I have it between a 1721 connected to the Net and a 2621 doing internal intervlan routing. I can get to the web from the PIX (how I am writing this) but I am not able to get from the internal network to th...
Copyright (c) 1996-2003 by Cisco Systems, Inc. Restricted Rights LegendUse, duplication, or disclosure by the Government issubject to restrictions as set forth in subparagraph(c) of the Commercial Computer Software - RestrictedRights c...
Hi AllI have an ASA5510 as a hub and several cisco 877's running EzyVPN as the spokes. The remote (branch office) LANs can successfully see each other through the ASA. They can also see a LAN directly behind the ASA itself. Everything works nicel...
Resolved! no route ro message (message nr 110001)
Hello allHave a PIX with 6.3.4 running. Want to route traffic internal to a L3 device. Static route to inside are configured.route inside 10.57.7.0 255.255.255.0 10.57.1.3 1Default GW for internal devices are the PIX. If a device on inside tris to re...
Some signatures, let's use 5769 (Malformed HTTP Request) as an example, perform event summarization. If I apply an event action filter to the signature to tune out FP's coming from a specific host, the individual events indeed go away, but the summa...
Folks,The CSS 11506 is triggering tens of thousands hits with signature 3030. We have many other hosts on the campus hitting this signature but the CSS was by far the biggest offender. My question is to verify if the CSS needs to perform these TCP sy...
I have a 515E with many VPN connections set up.How do I reset a single connection without effecting the other sessions?I have tried "clear ipsec sa peer " command but all the sessions reset!!
I have a PIX 501 that has been working great but on my PC today I lost connectivity. When I looked at my PIX the VPN light was blinking rapidly. I did not have VPN setup but everytime it gets plugged in the VPN light is the only LED that lights up ...
Hi,I use the version Pix 7.2.1 and ASDM version 5.2.1I've found un problem when I want to add an existant address in a Network Object Group. I've sorted by name the existant Address and I try to add in to the member group. It's never the select ad...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 12-15-2025 09:32 PM | ||
| 12-11-2025 07:27 AM | ||
| 11-13-2025 12:52 PM | ||
| 11-03-2025 09:48 AM | ||
| 10-30-2025 12:44 PM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 4 | |
| 3 | |
| 3 | |
| 2 | |
| 2 |
