Skip to main content

Recently Updated Pages

Port Forward

Cisco ASA 8.0

Problem Port-forward firewall outside, port 5000 to inside IP 192.168.1.100, port 8080. Solution ...

Updated 2 months ago by david

Port Span

Cisco Switch

Session Monitoring This is the vocabulary that Cisco uses to describe port mirroring, port monito...

Updated 2 months ago by david

Console Commands

Cisco ASA

(2017-04-26) Some Console Commands # show run | in <string> # more run | begin <string> useful e...

Updated 2 months ago by david

Use User's Password As Enable Password

Cisco ASA 9.8

(2020-12-17) Problem I want to use my username password as the enable password in ssh sessions So...

Updated 2 months ago by david

TLS DH Group Key Length

Cisco ASA 9.8

(2020-01-20) Problem Something like SSL/TLS: Diffie-Hellman Key Exchange Insufficient DH Group St...

Updated 2 months ago by david

Test Authentication Server

Cisco ASA 9.8

(2020-03-18) Problem Is my Radius (or LDAP) server working? Solution # show run | begin aaa-serve...

Updated 2 months ago by david

SSH pubkey authentication

Cisco ASA 9.8

(2020-09-25) Problem How to set up an ASA to accept an ssh pubkey? Solution Create a ssh key as n...

Updated 2 months ago by david

Security Commands

Cisco ASA 9.8

(2019-01-20) Problem Collection of the SSL mitigations I've been collecting. Solution No commenta...

Updated 2 months ago by david

PPPoE Session Status

Cisco ASA 9.8

(2021-12-03) Problem What is happening with my PPPoE session? Solution Nothing, probably, but her...

Updated 2 months ago by david

Missing HTTPOnly Cookie Attribute

Cisco ASA 9.8

(2022-01-08) Problem Some security scanner is complaining that there's no 'httpOnly' cookie attri...

Updated 2 months ago by david

Force TLSv1.2 or higher

Cisco ASA 9.8

(2020-01-20) Problem ASA still responding to, and using, protocols less than TLS1.2. AKA: SSLv2 a...

Updated 2 months ago by david

Disable TCP Timestamps

Cisco ASA 9.8

(2022-01-08) Problem Some security scanner is complaining that TCP Timestamps are enabled on my A...

Updated 2 months ago by david

Self-Signed Certificates

Cisco ASA 9.5

(2018-01-10) Problem I have a new ASA and I need some self-signed certificates. Solution (this is...

Updated 2 months ago by david

Show Dropped Packets

Cisco ASA 9.1

(2019-09-20) Show Dropped Packets ALBERT# capture TEST type asp-drop all real-time […] ^C ALBERT#...

Updated 2 months ago by david

Same-interface Hairpin

Cisco ASA 9.1

(2017-05-31) Problem I have a server on my dmz at 192.168.1.10, with a public IP of 1.1.1.1. I ne...

Updated 2 months ago by david

Port Forward

Cisco ASA 9.1

(2017-02-28) Problem I have firewall with public IP 1.2.3.4. I need to expose ssh the private ser...

Updated 2 months ago by david

DHCP Reservations

Cisco ASA 9.1

(2021-02-25) DHCP Reservations This feature is now supported on ASA in version 9.13(1) and later ...

Updated 2 months ago by david

ASDM on Windows 10

Cisco ASA 9.1

(2015-10-01) Problem ASDM 7.1(3) on Windows 10. Solution Install 32-bit and 64-bit Java-JRE. I i...

Updated 2 months ago by david

Can't Run ASDM On New ASA

Cisco ASA 8.6

(2013-07-05) Problem Brand-new out-of-box ASA (5512 in my case) won't permit the ASDM to run. Err...

Updated 2 months ago by david

Site to Site VPN

Cisco ASA 8.4

(2013-05-08) Sorry, no detailed notes (too busy right now) but this seems to work. If you read my...

Updated 2 months ago by david