Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,
Currently there is a requirement in our organisation to use DHCP Server to assign IP address for Remote VPN users. The DHCP Service runs on a Windows server and I have created a scope that need to be assigned to the users. DHCP Server IP address...
Hi,
After the firewall upgrade , we are facing problem with Destination NAT. Can someone tell me how to write a destination NAT in 9.1 version.
Source : Any
Destination : 10.60.32.17
Need to be translated to the destination IP : 10.60.32.140
Regar...
Hi,
I have recently upgraded the firewall from 8.4.4(5) to 9.1.7(4) version. And post the upgrade seems to be some issue , like to know the downgrade procedure to earlier version to 8.4.4(5) from 9.1.7(4).
Regards
Alexander Moorthy
Hi,
We have a Cisco ASA firewall 5580 running with 12 context. There is a plan to upgrade the devices to 9.1(7)4 version ( the highest supported version on this model). There are 2 plans for us to decide on.
Plan 1
1.Upload the image 9.0(4) to the Se...
Hi,
We have a ASA firewall 5580 running on 8.4(4)5 version in Multiple mode (context 10). Customer has requested for an upgrade to test the URL Category filtering on the firewall. I have checked the upgrade path document but couldn't find the exact v...
Hi Yasaman, The nat-control is enabled on the firewall,thats why you need a translation to allow the specific traffic. To work , add a nat-exempt from the source to destination/ destination to source.
To answer it in simple there is no security concern with the Internet router on the DMZ switch but you need take care of all the L2 Layer type of attack by hardening the Switch configuration.
Hi,I couldnt understand what the issue is. If you want to place the all the management tool and tacacs in the DMZ, then change the IP address and assign them in the DMZ segment.
