Pair of 5515-x with SFR , in Active/Standby failover.
Policy-map is configured for: sfr fail-open
If SFR fails on primary/active device, is:
1. primary device stays active since it's configured for sfr fail-open?
2. failover occurs and secondary be...
How can I determine which Rule the drop is coming from? What does the ID value 0x73d6a600, represent? i can post config if necessary. i am trying to understand why our AD server (192.168.16.10) cannot ping our DB Server (192.168.80.59). The topology ...
As the title suggests, I am trying to view the logs of an ACL. Below is the line of configuration I have in my config.
access-list VPN line 13 extended deny ip any any log informational interval 300 (hitcnt=192)
I how do I view the actual dropp...
ASA CLI Book says: "You can configure one access-group command per ACL type per interface per direction."
Does this mean one command per interface, or one command per direction?
Can we add two rules on outside interface? Sg like this:
access-list OUT...
Hello All;I am deploying a redundant pair of ASA 5545X Firewalls and using the ASA-IC-6GE-SFP-C fiber card to provide fiber optic interconnectivity to the firewals and for failover capabilities (The firewalls are located across the campus from eacho...
Hi,We have pair of ASA5585 (ver 8.4(4) with IPS module configured with Active/Standby failover. There are total 09 interfaces are connecting to different zones in the firewall and out of which three(3) interfaces are connecting to Palo Alto 2nd layer...
I have a Lab setup where there is a FMCv, FPR-2110-FTD, FPR4110-FTD, 5515 W/Firepower Services, and 5506-FTD. All the FTD devices us an IP Address in the 10.239.1.0/24 network assigned to the management interface to communicate with the Manager (FMC...
Hello,
I bought a used IPS 4225 to learn about IPS, I am having problem figuring out how to connect it physically to my home network and be able to access it through the GUI. I searched for about 3 days trying to figure it out but couldn't find anyth...
Hello, i have a simple 5506 firewall setup with two interfaces, inside 172.19.0.2/24 and outside 10.10.10.1/24 a partner has their firewall in the outside subnet 10.10.10.100/24I have one static route to reach my other internal subnets:route inside 1...
We have an ASA with Firepower managed by FMC
One of the networks connected to the ASA services wireless clients, and those clients connect through the ASA to a proxy server (IronPort) to get to the Internet.
Since there is a base IPS policy and ...
Hi,
I am planning to do a migration of the ASA configuration to FTD with the current migration tool (would be better if new one is available...). My question is:
After migration and when I import the migrated configuration to FMC, will my existin...
Hi all,
Our single asa is unexpected reload. The ASA version is 9.1.7. The attachment are the crashinfo and the show tech information. what's the meaning of the information.? Is it hit the bug?
Dear Support
Recently i installed a web server on my DMZ zone.
My network is with two firewalls, one sophos and Cisco ASA 5525 (cf network design attached)
The server in dmz has ASA ip like default-gateway, the webserver reach internet easly and ...
Hello,I entered (session sfr console) the firepower of ASA5506x module, but I can not get out, I tried typing the combinations 'CTRL + SHIT + 6 + X' and 'CTRL- ^ X' but it did not work.Please, could somebody help me?
