Blog Archives

Cisco ASA CLI backup command

There is a new command in Cisco ASA firewall that makes a full backup of the firewall, from CLI! Until recently we have been forced to use ASDM to download a full zip backup file from the device or CLI

Tagged with: , , , , , ,
Posted in Cisco Security

Cisco ASA firewall and ICMP traffic

In this video I explain how ICMP Traffick (like pings, echo, echo-reply) is handled in the firewall. The ICMP packets are being handled in 3 different ways depending if the traffic is to the box, from the box or thru

Tagged with: , , , , , , , , , , , , , , , , , , , , , , , , , ,
Posted in Cisco Security, Security

Cisco ASA builtin scp server

The Cisco ASA contains a builtin scp server. By enabling that you can use the scp protocol to transfer files to and from the server using an scp client. scp is a secure file transfer protocol. It is almost like

Tagged with: , , , , , , , , , , , , ,
Posted in Cisco Networking, Cisco Security

How to setup ssh keypair authentication in Cisco ASA

I created a short video on how to configure Cisco ASA to allow a CLI user to authenticate with RSA keypair when connecting with SSH instead of username/password. See video below. In short, this is how to do it: username

Tagged with: , , ,
Posted in Cisco Security, Security

CBAC – Make the Cisco router stateful

CBAC is a simple way to turn a Cisco-router from being a stupid packet-filter into an stateful firewall with protocol inspection. The following example explains how to configure CBAC to allow return-traffic back when an inside web-client http to an

Tagged with: , , ,
Posted in Cisco Security


[mc4wp_form id="2457"]
Website Security Test