Does anyone know if Cisco has a recommendation for the number of rules/access list lines per firewall? I know within Check Point, there is a recommendation for no more than 50 rules per firewall within the Security Policy Rule Base. Looking for an ...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,530) -
Cisco Bugs
(32) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(140) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,165) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(7) -
Cisco Secure Firewall Management Center (FMC)
(35) -
Cisco Secure Firewall Threat Defense (FTD)
(54) -
Cisco Security Cloud Control
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(43) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(26) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,570) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(92) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,559) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Open Source and Open Standards
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Automation Analytics Topics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(5) -
Other Firewalls
(1) -
Other IP Telephony
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,771) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(629) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(25) -
VPN and AnyConnect
(1) -
Vulnerability Management
(42) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Ive scanned my internal pix interface and Ive found this port (TCP 1476)open. Ive not found CISCO documentation about this.who knows?
We have a subnetted class C as our inside network on a pix running 6.1. We are attempting to communicate with another subnet of that same class c on the outside, with no success. Does the pix recognize classless routing? If not by default, how do ...
I am trying to figure out the spare parts required to maintain a PIX 525 firewall.If we order PIX 525 chassis, what are the items included in that ( ie power supply, main system board etc ) ?
Hi,the cwsi-start failes with the message: "could not reconnect to osagent". The Installation contains the following Software: WindowsNT4-Server (SP6a), HP Network-Node-Manager 6.2, RME2.2 / CWSI 2.4. The information from osfind.exe is: osagent works...
In a situation where a WAN router sits on the LAN (Inside I/F of PIX), is it valid to make the PIX the gateway for the network and define internal routes to other sites. I've tried this on a number of occasions with mixed results, and usually end up ...
Hi All,Does anyone have any problems of accessing their remote PIX via the VPN or even remote PIX outside interface while the L2L VPN taken place ?I'm currently having this problem. I can't ping nor SSH, PDM at all to the interfaces of the remote PIX...
We are running into a problem between our Pix and internal website. Internal users will suddenly lose the ability to resolve the website. You can do a clear xlate and everything will go back to normal. Has anyone ran into this before? Is this a globa...
Resolved! Inbound direction on Pix interfaces
Access-group statements always apply an ACL to an interface with the command "in interface <interface name>. The Pix docs say that "this filters inbound packets at the given interface". I would like a clear definition of what is inbound. My under...
Is it possible to permit/deny more that one tcp/udp port on the same line in an access-list. For example, could I state:access-list acl_out permit tcp any host X.X.X.X eq 22 23 80to permit SSh, Telnet, and HTTP. (PIX software version 6.1.4)
I am learning how to setup a PIX failover configuration using two PIX 515 and was wondering, on average, how long it should actually take me to configure this?
I confiugred DHCP server on VPN3002 and clients successfully learing the IP address but cannot get DNS address even manually configured...connectivity,VPN3030--internet--Firewall--VPN3002--clients.(**VPN3002=Rel3.6.1K9).If I configure DNS on the VPN3...
I would like to disable the HTML interface on the outside or public interface on the 3005. However, I would like to still be able to reach the HTML interface on the inside or private address. I tried filters/rules, etc without any luck. I'm using ver...
Hi all,I have a VPN3015 at central site and a PIX501 at remote office. I have no problem of establishing LAN to LAN IPSec connection between two devices using either VPN client or the conventional way.The problem is when the VPN is established, I can...
.We have multiple wirleless segments behind PIX firewalls and would like our mobile VPN users to utilize DHCP assigned addresses rather than have to manage static IP addresses and to minimize exposure and harware we would like the PIX to handle the a...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 08-29-2025 08:17 AM | ||
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 6 | |
| 5 | |
| 3 | |
| 1 | |
| 1 |
