Hi There is some servers (serverA,ServerB,ServerC) that sends request to a another server (WEBSERVICES_Server) through a ASA (8.2) (in routed mode) the WEBSERVICES_Server's ip address is going to be changed ,the issue is that the new ip address can n...
Forum Posts
Hi Everyone, One of my sensor is showing critical error all the time as below picture . Does anyone know how to fix this ? Thanks a lot
Within my FMC (6.2.0.2), navigate to "Policies > Access Control > Intrusion" and then open to edit my IPS policy. When I click on "Advanced Settings", I only got "Sensitive Data Detection" under Specific Threat Detection. Like screenshot below. I ...
Hi, We have an ASA which is directly connected to the ISP device and we are not able to access internet. We can ping our gateway from Switch & End User devices. I'm new to ASA. Also our outside interface traffic is almost zero. Could anybody help...
Hello everyone, I have an ASA5550, on which I have successfuly configured Anyconnect (Client version 3.1.10010) to authenticate with both Username/Password and User certificate issued by my internal CA.What I'm actually trying to achieve is to allow ...
Please see attached document cant ping through firewall in DMZ with two ASA's Thanks
Resolved! Cisco AnyConnect to NAT for L2L tunnels
Hello all, I'm looking to gather some thoughts to determine if this is possible or not.. I currently have an AnyConnect VPN configured on my ASA and it's working fine. I'd like to be able to be able to access my l2l offices without updating the ph...
We're looking to deploy two ASA's, one in each Data Centre, we already have an ASA-5525-X but we are considering purchasing an ASA-5545-X for the other Data Centre. Is it possible to configure these two devices in an Active/Standby pair? Or do we n...
Guys Please help. When home last night was was excited to connect my Cisco ASA 5510. I put my comcast modem in bridge mode, connect my ASA, interface0/0 - connected to cable modem and interface 0/1 connect to my switch. I just couldn't go online. P...
what is the best way of creating rules in your access control policy after learning from network discovery, specially when you have multiple sites and big network. is there a easy or automated way to create policies from network discovery analysis? ...
Get error below when trying to ssh to legacy 3560 from my Ubuntu jumphost, running 18.04: Unable to negotiate with 10.18.3.18 port 22: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1 I don't see the KEX, diffie-hell...
Resolved! ASA RADIUS attribute CVPN3000/ASA/PIX7x-IE-proxy-lockdown - supported ? Type ? Valid Values ?
I found the ASA RADIUS attribute CVPN3000/ASA/PIX7x-IE-proxy-lockdown 134 in the ISE Dictionary as well as listed here: https://community.cisco.com/t5/security-documents/ise-network-access-attributes/ta-p/3616253 If at all, what ASA ve...
Hi Frdz, Can we access built in fwsm module through SSH, What configuration is required. We wanted to access it directly via ssh. Pls share any ref document. Regards, Vijay
Hi Pros, I have 2 ASA firewall in multiple context but the first context keep stuck in normal (waiting) 00INFASA05/pri/act# sh failFailover OnFailover unit PrimaryFailover LAN Interface: Failover GigabitEthernet1/4 (up)Reconnect timeout 0:00:00Unit...
Hello, We have a valid certificate installed on our ASA 5516x's (Pair) for our VPN users, but I've recently scanned them and get an error in the report regarding the certificate "We were unable to validate the certificate chain provided by this s...
