Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
The recent advances and attention to quantum computing have raised security concerns among IT professionals. The ability of a quantum computer to efficiently solve (elliptic curve) discrete logarithm, and integer factorization problems poses a threa...
This EEM script (TCL policy) monitors the routing table of an IOS router in order to find if the router has seen an invalid LSA, which would mean there was an attempt to exploit CVE-2013-0149. If an exploit was seen the script generates a syslog. The...
This EEM script (TCL policy) monitors the I/O memory of an IOS router and also keeps track of the IKE buffers. It sends a syslog when the memory drops below EEM_IKE_BUFF_INCR_THRES % level while the IKE buffers have dropped EEM_IKE_BUFF_INCR_THRES co...
Problem / SymptomExplanation of the messageTroubleshootingCommon causesTraffic hair-pinning on the ASA/FWSMRoutingNATting Problem / Symptom There have been multiple cases where someone sees a drop syslog on his ASA / PIX / FWSM firewall saying "Deny...
This blog aims to present an overview of various Cisco firewall products' features. It will not present configuration examples or get into details on intricacies of features and functions. But it will rather present a summary of what each function d...
The connection is established due to TCP intercept. The ASA establishes the handshake with the TCP intercept issue being enabled by default for management connections. So the ASA looks like it is listening. More info here http://www.cisco.com/c/en/us...
Nadiq,
There is probably a translation rule that is picking this up and the ACL is probably allowing the packet. I suggest to run packet tracer to see how the packet is being processed to see what rule you are hitting. The packet tracer command will ...
Hi,Great doc.Is it complete now?BRPavelHi Pavel, Yes, it covers more or less everything that can be done to investigate and try to solve ASA oversubscription.Feedback welcome.Take care,PK
Geia sou Niko,I would suggest looking into https://supportforums.cisco.com/docs/DOC-14307#212_Failed_deploymentYour deployment fails because the parser doesn't consider the warning as a success code. Your workaround for these commands could be a Flex...
When you set the sysog server that doesn't mean the CSC will no longer keep syslogs locally. You cannot configure it to not keep syslogs locally. It will send logs to the server and also keep some locally.You might be able to change the space they oc...
