I'm low on public IP's, so I wonder whether I can connect the outside interface on my Cisco ASA firewall to VRF with a link network like 10.11.12.8/30, and then route a public IP to the ASA firewall and use that IP as source for outbound NAT rules an...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,510) -
Cisco Bugs
(31) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Management Center (FMC)
(3) -
Cisco Secure Firewall Threat Defense (FTD)
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(319) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(90) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,553) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,769) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hi everybody,I have two firewalls Cisco ASA (5516x and 5525x).The ASA5516X has connected one PC (192.168.50.90/24). The 5516 is the gateway (192.168.50.1/24).The other ASA (5525X) has configured one VPN remote access (from Internet to PC:192.168.50.9...
asa 5506xappear ciscoasa-boot>how exitand boot
I am having issues creating an Trunked Etherchannel between a switch and an ASA firepower 4120. I have an etherchannel up that is an access etherchannel and it works fine, the problem comes when I try to trunk it. I have tried a non-etherchannel tr...
hi , i have a situation. i am using vpn thats a different pool of network. (15.x.x.x) i tunneled it to the network which is regular lan network( 192.x.x.x).but there is a different vpn site to site which is a different address.(172.x.x.x) So , the pr...
HI, show inventory output will provide one serial number and show serial number command output provide another serial number on FPR-2140. I have attached screenshot for your reference and Please explain on this.
I'm fairly new to ASDM so I apologize for this noob question. I need to see what is actually passing through a specific source IP and destination IP, my goal is to identify which specific ports I'm missing on an IP ruleset. My logging is setup to "De...
Hello Everyone. I have installed CISCO ASA Version 9.10(1).11 on a FTD-2110 appliance. This appliance answer on both 192.168.45.1 and 192.168.45.45. To get to the firepower software you go to 192.168.45.45(then from there you can access the asa) or ...
Resolved! Is there an "All-Other" zone in ZBFW?
Do I need to define a zone-pair for each and every possible zone-pair combinations? Can I define a zone-pair that is sourced "All-Other-Zones". My guess is no, but I have to ask. Configuring all those zone-pairs are kind of a PITA.
Hi, I have this configuration in GNS3 with FTD. I can't access Internet from the Inside interface and I can't figure why. Could you please help me? : Saved:: Serial Number: 9A2HWHFXJEA: Hardware: ASAv, 8192 MB RAM, CPU Pentium II 2600 MHz, 1 CPU (4 c...
Hi all, I have a 5508-X running FTD v6.2.3-83; it is configured in routed mode with "the usual" configuration: outside and inside interfaces / zones with traffic allowed out but not in. I also have AnyConnect services for remote access VPN servicesI ...
Hi Guys,Today i have a topology where i have a nexus 7K, where there are multiple VRFs that terminate on 4140 Cluster.One or more VRF is part of a zone on the Firepower. the Firepower doesnt have any VRF. Policies are used to control access to the d...
I did a upgrade of 2900 router version. After the upgrade lost connectivity to internet. Phones/Email everything is working fine. Unable to reach internet. Google IP 8.8.8.8 is not reachable.Also,I get theses errors in router log: FW-6-DROP_PKT:Drop...
Resolved! DHCP Scope using VPN Client
Have had great success here. Here is another one. We are moving from ACS to ISE and its working wellExcept...My VPN clients are picking up their DHCP address from a microsoft DHCP server.Their default gateway is wrong.The DHCP scope is 192.5.20.65-80...
Resolved! ZBFW: UDP timeout config for VPN
I have an IPsec VPN config which uses UDP 500 and UDP 4500. After adding a basic ZBFW config to block unsolicited incoming connection. I noticed my VPN is flapping occasionally. Since it does not occur consistently, I suspect it has to do with sessio...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 10 | |
| 5 | |
| 5 | |
| 2 | |
| 1 |
