ASA Application Inspection

• Post author:Admin
• Post published:January 12, 2026
• Post category:ASA/Cisco

The ASA inspection engine is required for services that embed IP addressing information in the user data packet or open secondary channels on dynamically assigned ports. Application Inspection uses the…

Continue ReadingASA Application Inspection

ASA Service Policies

• Post author:Admin
• Post published:January 8, 2026
• Post category:ASA/Cisco

The Cisco ASA firewall, Service Policies use the Modular Policy Framework (MPF) to provide a flexible way to configure ASA features, such as connection settings, inspection, QoS, redirection to service…

Continue ReadingASA Service Policies

ASA IKEv2 Multiple Key Exchange

• Post author:Admin
• Post published:December 14, 2025
• Post category:ASA/Cisco/VPN

IKEv2 normally uses a single Diffie-Hellman (DH) key exchange during the IKE_SA_INIT phase to derive a shared secret between the VPN peers. Multiple Key Exchanges lets the peers perform more…

Continue ReadingASA IKEv2 Multiple Key Exchange

ASA VPN Loopback

• Post author:Admin
• Post published:November 13, 2025
• Post category:ASA/Cisco

Cisco ASA version 9.19(1) introduced support for loopback interfaces. Loopback interfaces can be use with VPNs as the Tunnel Source and to use IP unnumbered on the tunnel interface. When…

Continue ReadingASA VPN Loopback

ASA Export/Import Certificate

• Post author:Admin
• Post published:April 1, 2025
• Post category:ASA/Cisco

This post provides step-by-step procedure to export/import the SSL certificate used by the Cisco ASA using CLI and ASDM. Export/Import via CLI View the current CA/Identity certificate and identify the…

Continue ReadingASA Export/Import Certificate

ASA ICMP/Traceroute

• Post author:Admin
• Post published:March 29, 2025
• Post category:ASA/Cisco

By default the ASA does permit ICMP replies TO any ASA interface, but does not permit ICMP THROUGH the ASA. In other words you need to specifically configure the ASA…

Continue ReadingASA ICMP/Traceroute