Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3486
Views
0
Helpful
1
Replies

firepower blocking all traffic

Go to solution
Addey Salameh
Level 1
Level 1

‎12-10-2015 12:12 AM - edited ‎02-20-2020 09:00 PM

Hello guys 

well i bought cisco asa 5506-x with firepower module and license for url filtering,control and AMP ...and i'm really lost i mean im new to these devices
so i googled how to configure such a device it works now but when i redirect the traffic to the firepower it blocks all kind of traffic 
so please guys help me with this thing :/

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎12-11-2015 03:38 PM

Hi Addey-

I would first recommend that you reach out to a Cisco re-seller/integrator to get this deployed correctly. Make sure you ask for some knowledge transfer too! :)

Otherwise, you can check out the configuration guides:

http://www.cisco.com/c/en/us/support/security/asa-firepower-services/products-installation-and-configuration-guides-list.html

You can also configure the ASA to redirect the traffic to the Sourcefire sensor in IDS mode only. That way you don't actually block any traffic:

sfr fail-open monitor-only

http://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/118644-configure-firepower-00.html

Thank you for rating helpful posts!

View solution in original post

0 Helpful
1 Reply 1

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎12-11-2015 03:38 PM

Hi Addey-

I would first recommend that you reach out to a Cisco re-seller/integrator to get this deployed correctly. Make sure you ask for some knowledge transfer too! :)

Otherwise, you can check out the configuration guides:

http://www.cisco.com/c/en/us/support/security/asa-firepower-services/products-installation-and-configuration-guides-list.html

You can also configure the ASA to redirect the traffic to the Sourcefire sensor in IDS mode only. That way you don't actually block any traffic:

sfr fail-open monitor-only

http://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/118644-configure-firepower-00.html

Thank you for rating helpful posts!

0 Helpful
Customers Also Viewed These Support Documents