Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Dear all,Please advice in one thing. Imagine I am looking for user which is causing most of the connections over my firewall.On ASA I was using simple commands (where 500 is number of connections per ip address):sh local-host connection udp 500 | i l...
Dear all, Please advice, what are possibilities. AsIs situation: ASA with webvpn configured on outside interface. This is pretty standard solution which is working for many years. ToBe situation: add possibility to connect via VPN client on inside in...
Dear all,
I was searching Internet for facts about ASA 5545-X.
Several sources claims (ie. https://communities.cisco.com/community/technology/security/ngfw-firewalls/blog/2016/2?mobileredi_1), that 5545 is almost the about the CPU distrubution:
5545-...
Dear all,
I have question.
Situation:
ASA1 - ip address 1.2.3.4 (internet routable)
ASA2 - ip address 192.168.1.1 (RFC1918) and NATed 2.2.3.4
Address 2.2.3.4 is routed from internet to address 192.168.1.1.
I want to make ipsec tunnel between those...
Dear all,Accidentaly I have discovered, that idle timeout on ASA not always works as I expected.Can somebody explain me, why I can see something like this (addresses changed, but time info remained)?UDP outside:192.168.1.1/43501 inside:192.168.0.102/...
Hi,I am sorry, but according to this https://blog.qualys.com/product-tech/2019/04/22/zombie-poodle-and-goldendoodle-vulnerabilities the problem will remain until you remove CBC ciphers.You can edit ciphers in FMC under Devices -> Platform settings ->...
> show local-hostHostname or A.B.C.D Show local host information corresponding to this ip addressbrief Enter this keyword for brief informationdetail Enter this keyword for detailed informationzone Show local host information based on zone| Output mo...
Hi,That's very time consuming. Instead of 2 commands (one for UDP, second for TCP) I will have use Excel and copy data to this, sort and then filter. Imagine you have hundreds thousands of connections....Anyway, thank you
