Networks Training

Cisco ASA Firewall (5500 and 5500-X) Security Levels Explained

This article describes the security levels concept as used in the Cisco ASA firewall appliance. The following information applies to both the older 5500 series and the newer 5500-X series of appliances. What is Security Level A Security Level is assigned to interfaces (either physical or logical sub-interfaces) and it is basically a number from […]

Password Recovery for the Cisco ASA 5500 Firewall (5505,5510,5520 etc)

If you have lost the administrator password to access the security appliance you can recover the ASA password with the following steps: Recovering your Password on Cisco ASA Step1: Connect to the firewall using a console cable Step2: Power cycle the appliance (power off and then on) Step3: Press the Escape key to enter ROMMON […]

Cisco ASA 5505, 5510 Base Vs Security Plus License Explained

CISCO ASA 5505 CISCO ASA 5510 The two smallest ASA Firewall models, the 5505 and the 5510, are the only ones that have two types of licenses. They can be ordered either with a Base License or a Security Plus License. Many customers of mine are always asking me what the difference is between the […]

How to Block HTTP DDoS Attack with Cisco ASA Firewall

Denial of Service attacks (DoS) are very common these days. Especially Distributed DoS attacks (called also DDoS) can be executed quite easily by attackers who own large networks of BotNets. Thousands of malware-infected computers (which comprise the so called “BotNets”) are controlled by attackers and can be instructed to start attacks at any target. Usually […]

DNS Doctoring – Access Internal WebSite using its public URL

In this post we will discuss DNS Doctoring on Cisco ASA firewalls. This is a useful feature and although it’s very simple to configure, not many people know about it. DNS Doctoring is helpful in the following situation: Assume you have a Web Server connected to a DMZ zone on a Cisco ASA firewall and […]

ExtraBacon Cisco ASA Vulnerability

A new serious vulnerability was discovered on Cisco ASA devices, called “EXTRABACON”, and was recently patched by Cisco by releasing several software updates for the device. You need to carefully read the following security advisory (CVE-2016-6366) from Cisco and patch your devices as soon as possible. At the end of the article above there is […]

No switch option on Cisco ASA 5506-X

The new ASA 5506-X and 5508-X were released a few months ago from Cisco and are the models which will replace the very successful ASA5505 SOHO firewall. Especially the 5506-X is marketed as the ideal replacement for the 5505 which was very popular and successful in small network deployments. As you might know already, the […]

New Cisco ASA 5506-X / 5508-X will replace ASA 5505

Currently the smallest ASA appliance is the 5505 which has been in the market for several years with millions of installations worldwide. This small, passively cooled firewall still receives all the latest ASA software upgrades and features and has been a favorite firewall appliance for SOHO or Small/Medium Businesses. The ASA 5505 is equipped with […]

Comparison of Cisco ASA5500 Vs ASA5500-X

Although Cisco created a new series of ASA appliances (5500-X series), there are hundreds of thousands of older Cisco ASA 5500 models installed and working in networks all over the world. If you are one of those professionals who are considering to upgrade your older ASA5500 appliances with the new “X” models, I have prepared […]

Comparison of Cisco ASA Software Versions

With the expansion of Cisco ASA models and the addition of new types of devices, it is inevitable to have also a confusion about which software version is supported for each model. A few years ago we had only the Cisco PIX series which were replaced by the successful Cisco ASA 5500 series firewalls. Now […]

Upgrading Memory of Cisco ASA Firewall (5505,5510 etc)

After the introduction of Cisco ASA software version 8.3 a few years ago, the device’s memory requirements for low-end models have been doubled. Many firewall administrators have been discouraged from this move from Cisco because they had to upgrade their firewalls RAM memory in order to upgrade to the newest versions. Upgrading the memory not […]

About Networks Training

We Provide Technical Tutorials and Configuration Examples about TCP/IP Networks with focus on Cisco Products and Technologies. This blog entails my own thoughts and ideas, which may not represent the thoughts of Cisco Systems Inc. This blog is NOT affiliated or endorsed by Cisco Systems Inc. All product names, logos and artwork are copyrights/trademarks of their respective owners.

Amazon Disclosure

As an Amazon Associate I earn from qualifying purchases.
Amazon and the Amazon logo are trademarks of Amazon.com, Inc. or its affiliates.

Suggested Cisco Training

CISCO CERTIFICATION TRAINING
CISCO CCNA 200-120 TRAINING
CCNA SECURITY 640-554 TRAINING
CCENT ICND1 TRAINING
CISCO ICND2 TRAINING
CISCO CCNP TRAINING

BLOGROLL

Tech21Century
Firewall.cx