Blog Archives

ASA Nat behavior with multiple public ip ranges changed after upgrade

I recently upgraded a customer ASA from v8.2 to 9.0 and while doing that I found out that some (yeah!) of the static NAT translations didn´t work after the upgrade. Skilled ASA-upgraders knows that this happens a lot. That´s why

Tagged with: ,
Posted in Cisco Security

Cisco CLI access using Radius and ISE

When releasing Cisco ISE as a “new ACS” questions quickly raised regarding the fact that there is no Tacacs+ support in ISE. With v1.0 of ISE Cisco said “Tacacs+ will come in a future version” but we haven´t seen it

Tagged with: , , ,
Posted in Cisco Security

Cisco Live – Management of ASA CX firewalls

There is a lot of buzz around Cisco Prime. It’s obvious that Cisco put a lot of effort and money in this product. Primecisc will eventually be a whole suite of management tools under the same umbrella and my gut

Tagged with: , ,
Posted in Cisco Security

Cisco ASA 9.1 released

Without any prior notice Cisco released software version 9.1 for the ASA firewall.   The only new feature in 9.1 is CX support for other X-models than 5585-X. This probably means that it very soon will be possible to run

Tagged with: ,
Posted in Cisco Security

Perverted NAT

This is probably the most perverted form of NAT I have ever done. <flamebait> But, it serves as a proof that with proper NAT there is no need for routing </flamebait>   Scope: There is a Cisco ASA running code

Tagged with: ,
Posted in Cisco Security

Signuppp

[mc4wp_form id="2457"]
Website Security Test