Hi; I'm trying to configure remote access VPN to Cisco FTD 6.2.2. My internal RADIUS is ISE 2.4 (patch 5). The remote access VPN establishes successfully; but some interesting things happens: I get double logs on ISE, one shows failed attempt and...
Forum Posts
Hello. With the "stock" settings on an ASA5506 (firmware 9.8.2), I have noticed that there is an open TCP port 5060 on the WAN interface when I scan it using NMAP or any other network scanner. I see that this is usually used for the SIP protocol. I a...
Resolved! ASA5505 - Need help with port forwarding
Hi everyone,I have been struggling to get port forwarding to work on my ASA5505.So far I have setup an ACL to permit the port traffic and NAT rule to forward to port to the specific host.Packet tracer in the ASDM shows that the packet is allowed. How...
When scripting on a router to translate the following network's addresses to 192.168.x.x/24 addresses, which commands should be used? 172.16.4.0/24 to 192.168.1.0/24 The NAT pool is for the entire network.This can exclude the ACL statement since I kn...
getting the following error when running vulnerability scan: missing the "httpOnly" attribute.. The flaw is due to a cookie is not using the 'httpOnly' attribute. Thisallows a cookie to be accessed by JavaScript which could lead to session hijacking...
I see that as of ASA 9.10(x), Firepower can no longer be installed. 1. Is FTD still supported? 2. How long will the Firepower 6.2.x be supported on the ASA? 3. Do any low cost options (<$2000) exist that support Firepower? 4. Is a new model replaci...
We have a server that runs a script to block traffic from certain non-US countries. Every night it emails a list of the connections it had to block. We purchased FirePOWER - and configured GeoBlocking - to Block/Reset connections from those same co...
On an ASA I am getting ambiguous command errors on show commands. For example, this happens with "show route summary" and "show route eigrp". I am seeing this on a 5512 firewall running 9.4(4)5 and a 5515 running 9.4(2)6 I have an additional 5515 a...
I have a network setup like this:WAN>>>>Ubiquiti EdgeX Router>>>>LANI want to add a VPN but not with the Ubiquiti Router becasue it only does supports PPTP.I want to use my Cisco 5505 ASA as a VPN and have set the outside interface to 192.168.1.2 be...
Hi,Does anyone know the maximum number of static route entries on a ASA5520 ?Thanks.
There is a problem when i import Cisco_Firepower_Threat_Defense_Virtual-6.1.0-330 into VMware Workstation. while import to esxi is no problem.VMware Workstation is version 12.5. My CPU is Intel I7-6700HQ and memory is 32G.
Resolved! ASA 5510 ccna security lab setup problem
HiI'm heaving problem with my lab/asa setup. I can access (ping/https) asa/asdm from my home pc 192.168.1.15 but i cant ping or telnet to subnets 192.168.2, 192.168.3 and 192.168.4. I want to be able to access and configure my routers from my home pc...
Hi I have been tasked with renewing a identity certificate on our Cisco ASA 5525 firewalls using the current wildcard certificateAs this is a renew of the certificate from the same external CA as currently installed and the Root and Intermediate cert...
Reading the FTD 6.3 release notes it states that: You cannot install Firepower Threat Defense 6.3 or subsequent releases on the ASA 5506-X, 5506W-X, 5506H-X, and 5512-X. The final supported FTD release for these platforms is 6.2.3 This is incredibl...
Hello all, I am running Firepower Threat Defense 6.2.3.7 on a ASA 5506-X at home and i recently getting these error messages when trying to connect via chrome to the Device Manager (ERR_SSL_VERSION_OR_CIPHER_MISMATCH). I already checked via show ...
