Hi, We want to implement a security on router and want to block all incoming traffic to router (from outside) but want to allow all traffic from inside. Please let us know how can we do this. Please let me know if need any more info. Thanks,Amit
Dear,I want to permit the SCP protocol on my Cisco Devices (routers, switches, wap, ...) for one host (a server which backup the configuration by SCP).But if I'm not wrong, the SCP protocol pass by the SSH protocol.So, do you know if it is possible t...
Hi,Does any one knows How to make sure only corporate machines are allowed to go inside corporate network using Cisco ASA 4110 and stop personal machines going inside?. Thanks!
Hello, I want to prevent repetitive command, which is tried certain times in certain seconds. For example, when i type the show ip route 3 times in 5 seconds, IOS block the 3rd command. How can i accomplish this?
I am trying to allow port 80 through an this ACL so we can manage the web interfaces of the printers that will be on this vlanthe acl is applied to the vlan as "in" device is WS-C3650-24PD version 16.3.6this is what i have right now10 permit tcp any ...
We currently are attmpting to integrate a CyberArk Central Policy Manager for the purpose of managing the local account password for accounts on our routers and switches.Users log into each router/switch using ISE & RSA Mutilfactor authentication on ...
Hi All, We having Cisco FTD with version 6.6 [Cisco ASA Software Version - 9.14(2)] and Proxy(managed by other team). Experiencing problem with WCCP redirection since couple of days. This was a perfectly working setup. but now we intermittently faci...
Hi all, I'm not really sure if I should post this here or in Collaboration (or both) but I have a Cisco Unified Communications Manager that is reporting a hit on Nessus Plugin ID 66848. This plugin indicates that the remote service (The CUCM) support...
Hi Folks, Looking at the inline tagging config (CTS Manual) and I see this command is required on interfaces connecting the CTS devices.Propagate SGTLooking at the cisco documentation though there is a note for the above command that is slightly conf...
Hi Folks, When an SGT is pushed down from ISE to a NAD via Radius as part of a device/user authorisation, will that same NAD send back some information on the IP to MAC binding based on its device tracking information? Just looking to clarify how ISE...
Hello, I have Threatgrid on premises appliances and I get the errorThreatgrid can't process files Any suggestion what could I see? Thanks and regards, Konstantinos
Having an issue with the ACL firewall for my Packet Tracer assignment where despite my ACL configurations, attempts to reach out or access my HQ devices from Branch through a VPN site-to-site has been explicit denied by my ACL. Meanwhile outside netw...
Cisco team,I am replacing 3 ASA5506 with new FPR1010. This is what I have on my current 3 ASA: Maximum Physical Interfaces : Unlimited perpetualMaximum VLANs : 30 perpetualInside Hosts : Unlimited perpetualFailover : Active/Standby perpetualEncrypti...
Hello,I'm creating this new discussion because I'm trying to have some clarifications about the built-in trustpool in network devices.I found a lot of valuable information in https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_pki/configuratio...
I'm looking for pro and con when implemented MACSEC (if you are implementing on your environment) . Does data will be plain text if the the certificate is expired ? Thank you
