Other Security Subjects

FIPS Compliance Checklist

Hello, I need to enable FIPS mode on my ASAs. Can anyone point me to some sort of FIPS compliance checklist that can be used to go through my configurations prior to enabling this feature? What exactly is the ASA going to expect as far as encryptio...

EOL can someone please assist locating parts ASA5585

2 x ASA 55585 Slot Divider for Half-Slot IO ModulesPN: ASA5585-SEPTUM 2 x ASA 5585-X Half Width Blank Slot CoverPN: ASA5585-BLANK-H

Resolved! SSH Weak MAC Algorithms Enabled

Hi , My 2960X is accused of weaknesses by Nessus. http://static.tenable.com/documentation/reports/html/PCI_Scan_Plugin_w_Remediations.html#idp35720560 I can not find how to configure "ip ssh server algorithm mac hmac-sha1-160". Any suggestions?

SSL certificate renewaL

Hi I got a Cisco WS-C2960L-SM-48PS and been managing it through web GUI.But it's SSL certificate expired, question is does renewing the certificate needs reboot for the device? thank in advance

crypto pki import with warning of no CA cert found

Hi All As above title mentioned, i convert the third part cert in .crt format to .pfx or pkcs12 Somehow when i install into cisco device running in 12.x or 15.x, it prompt the message of % Warning: CA cert is not found. The imported certs might not b...

Resolved! Tunnel GRE using IPv6

Hello,I'm trying to do a tunnel between two routers, where the objective is communicating their loopbacks. Both loopbacks use IPv6, and both tunnels use EIGRP to communicate their loopbacks. When I finished it, both tunnels could talk each other if t...

new user on an exisiting device

so we have partly rolled out dot1x, but we have an issue where a user logs onto a device that they haven't previously, and it wont authenticate the user,and drops off network. if an existing user logs back on, its fine. we find that the user do...

Cisco Catalyst 2960-X Series security feature.

Hello,In a local network that using 2960 switches, Is it possible to capture specific packets? For example, find which user used remote desktop or which user browse other users computer share folders. Thank you.

My PC has not ASDM software after install

My Cisco ASA version is 9.2(2)4 , ASDM version is 7.2(2), PC is Win 10, and install Java SE 13.0.1 .I can use http connect ASA to download ASDM launcher(dm-launcher.msi). But after install ASDM, there is not ASDM launcher in my PC.This is my director...

PBR issue on ASA 5515 tcp no connection

Hello to all I have a problem with my ASA 5515 configured in multicontext mode I have a Test subnet that responds to the address 10.254.254.0/29 which must reach another subnet 172.21.22.0/26 on port 80 on another ASA in another location of my compan...

Resolved! MGMT-VRF

Hi, I configure a switch 2900L with MGMT-VRF and I didn't assign any username and password to the switch.when connecting to the switch via SSH it's asked me for a username & password !! I tried cisco, cisco --- admin, admin!I create my own user and ...

Switch/Router Forensics/HEX value before/after format

I was given (2) 3750G switches and (1) ISR4431 to do a data wipe. The client wants a detailed report showing basically, the forensics of the equipment. I figured a SHOW VERSION and FORMAT FLASH would suffice but it didn'.t. He sent me an example ...

Please suggest for start in Cisco Security

Hello Cisco Community I'm new guy for Security and I'm not have experience. Now I recieved project from my boss to installation and implement Cisco FTD. How I'm starting and I'm should be learn from Cisco ASA ? or start with FTD ? or another.Plea...

MacSec taking 30 minutes to establish when switch is reloaded.

We have a strange issue with MacSec btween three switches in a basic triangular topology. On initial setup the MacSec between all switches works correctly. However, on reboot, one of the two connected MACSEC links goes into one-way transmission. Thi...

How to manage restriction to limiting the ports from end user to server

Dear All,kindly suggest me the best way to restrict users to access servers and allow only required ports or services.ACL is the one option but it is time consuming and required more ACL for each user. I need something that easily manageable.

Other Security Subjects

Forum Posts

FIPS Compliance Checklist

EOL can someone please assist locating parts ASA5585

Resolved! SSH Weak MAC Algorithms Enabled

SSL certificate renewaL

crypto pki import with warning of no CA cert found

Resolved! Tunnel GRE using IPv6

new user on an exisiting device

Cisco Catalyst 2960-X Series security feature.

My PC has not ASDM software after install

PBR issue on ASA 5515 tcp no connection

Resolved! MGMT-VRF

Switch/Router Forensics/HEX value before/after format

Please suggest for start in Cisco Security

MacSec taking 30 minutes to establish when switch is reloaded.

How to manage restriction to limiting the ports from end user to server

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Domain 1.5 Describe security intelligence authoring, sharing, and cons

Cisco Firepower 1140 with FTD Version:7.2.5.1

SSO 503 Service Unavailable

Cisco Champion Radio Podcast: Exploring Solutions in Security

Cisco Advanced WAF and bot protection

How to IDS and IPS in a Firepower 2100 working with an ASA Image

Prevent users from enabling via RADIUS

ASA5525: Conn originating from outside interface not working- (NAT)

SSH

Renew HydrantID SSL ICA G2 Cisco ISE