Network Security

Hello I want to setup my cisco asa before my main router. I like to filtrate incoming ports. I like to enable transparent mode and configure as transparent firewall(I know all limitations of it) i set up all things but What IP i must add to bvi bridg...

Got a weird issue with some of my FTDs, running 7.2.5 on FMC and FTD. It seems if there is a new LSP update (we're on snort 3), 9 times out of 10, a policy deployment fails to remote FTDs. Without an LSP update, it works fine. With an LSP update, its...

Hi I have experienced the PHP webshell from the public webserver. Luckily, it was detected by 3rd party vendor and blocked successfully. [1][2] Most of all, I want to protect it by the Snort 2 on our environment at the first stage. But I want to know...

Hi all,  We are using FPR1010's on remote sites and 9300 or 9200 series switches. Firepower runs Asa code 9.18.3.56 Today the 9300 hiccupped and kept thinking the interface eth1/2 was up on the standby firepower, however on the firepower side it's ad...

I currently have on virtual FMC in Azure vMware(AVS) and I would like to have a 2nd FMC in another Azure region for redundancy and so we can manage our FMC in the 2nd region during DR. Does anyone know if I can simply add a 2nd FMC and cluster it wit...

Hello, we have a newer environment that we have been adding servers and NAT's to over the last few months. Recently ran into an issue where the servers have internet access until I apply a NAT in the firewall. The servers are in Azure and the firewal...

hiwhats the difference between enable password and enable secret?does secret encrypt the password we have given?

Hello,I have multiple group policies for AnyConnect and on some of the I would like my users not to be able to choose a connection profile, much like the same way this is accomplished with the group-lock attribute in ESA.Unfortunately, I cannot see s...

Hello,We utilize FMC running 7.2.5 to manage, among others, a pair of FTD 2110s running 7.2.5 in active/standby mode. In the process of moving to 7.2.5 we also upgraded from SNORT 2 to SNORT 3.We have been getting reports, and have been able to repro...

Hi,    I have configured flexible netflow on cisco 4351.  I want to sync it with Solarwinds using port 2055. its generating stats, but some how all the netflow information is not passing through Cisco ASA as it is not syncing with Solarwinds (showing...

HI,We are having an issue where the FMC no longer shows the Ethernet port form the FPR2100.on the FXOS interface i can see this:-FW /eth-uplink/fabric/interface* # showInterface:Port Name Port Type Admin State Oper State State Reason-------------- --...