Should we always need a static st. combined with ACL when connection is initiated from inside network. For example if am initiating a http connection from inside network then for the response http traffic should i need a static+ACL st.
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,586) -
Cisco Bugs
(39) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(147) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(32) -
Cisco Secure Firewall Management Center (FMC)
(148) -
Cisco Secure Firewall Threat Defense (FTD)
(182) -
Cisco Security Cloud Control
(8) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(263) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(32) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,576) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(322) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(92) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,579) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,779) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(8) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(641) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I have PIX 506e with software version 6.1(4). By default access to PIX is diabled. But I want to give access to the perticular single IP to the PIX. What commands should I configured on PIX or how should I do?
Hi, We have ASA 5510 with ISR router. ISR router is having 2 internet link from same service provider and 2 pool of ip address for 2 intenet link. One is 512 and another is 2MB link. VPN traffic is going via 2MB link aand Internet Link is having 512K...
Hi all,We have 2 firewalls in our network. The internal firewall is a FWSM with inside and outside interface and all the NAT is performed on the FWSM. The DMZ exists on the external firewall. DMZ uses all public addresses.I am in the process of putti...
Resolved! FWSM on a 6509
A client of mine purchased 2 FWSM modules for a 6509 a few years ago. They have never been used but are installed. I think I know the answer to this question, but I'll ask to be sure.Does the PIX OS (FWSM) support secondary addresses on it's interfac...
Hi,Currently i'm having trouble with this type of thing, my customer complaint that the PIX doesn't stop the threat, they have set emb_limit, max_conn, ip verify. And also when show ip audit count, large icmp is very high, is this a good news because...
Hello,can someone help me I'm running 7.1(2) on PIX 515E UR and my access-list is denying port 8888 eventhough I have it open up is there a bug in the software for that port. Here is the access-listaccess-list dmz_access_in extended permit tcp host ...
Hi,I have 2 Cisco ASA, configuring in failover. In the primary unit, I can see:his host: Primary - Active Active time: 3349739 (sec) slot 0: ASA5520 hw/sw rev (1.1/7.1(2)) status (Up Sys) Interface outs...
Good Morning allI'm having an issue with an internal ipsec tunnel between two pix's. The tunnel is built between two outside interfaces but the packets are being dropped at the inside interface with a no traslation group error, despite having the cor...
Hello,Is it possibly to measure the throughput for the tunnels setup on a pix 525? We need to verify by how much need to bump up our WAN pipe.Thanks,Stefano
Resolved! DMZ port in PIX 501 ?
Hi,Whether PIX501 supports DMZ interface ?. I know that PIX501 has 1 outside interface along with 4 build-in ethernet port. can we use any one the 4 port as DMZ interfaces ? If not can you please tell me which model of PIX supports DMZ interfaces .--...
I have a client who does not want to useAAA/LDAP to control user authentication andis fine with using local database authentication.They would like to migrate off of a VPN3030which has a maximum of 500 user entriestoday (and they would like more).So,...
Hi,Can somebody tell me how to downgrade the FWSM module on CAT 6500 from 3.1 to 2.3 version?RegardsSebastian
Dear Pros,Project explanation: Pair of pix firewall configured as failover.The outside of the pix pair connected to the internet gateway router 3825.Inside of the pix pair connected to the core switch ports configured with the vlan.The configuration...
1a. Trying to redirect an external ip to a DNS name/alias.1b. Redirect a external DNS name/Alias to a internal DNS name/Alias.2. Trying to do port forwarding from one public IP (with various ports) to many internal IPs.2a. Ports 80,81,82,83If they ar...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 12-31-2025 01:53 AM | ||
| 12-15-2025 09:32 PM | ||
| 12-11-2025 07:27 AM | ||
| 11-13-2025 12:52 PM | ||
| 11-03-2025 09:48 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 3 | |
| 3 | |
| 3 | |
| 2 | |
| 1 |
