Network Security

Resolved! ASA 5506-X L2L VPN

I am trying to create a l2l vpn over an internal network. The inside interface is facing the internal network, the outside facing a third party network. Using an ASA 5506-X I cant enable the crypto map on the inside interface. The only option I get t...

Asdm real time log viewer syslog connection lost ?

Hi all,I installed a new ASA using 8.2.2 version and ASDM 6.2.5 version in contexts mode.When i enable logging for ASDM as debugging i cannot use the real time log viewer because I have an error "Syslog connection Lost. Try restarting the syslog conn...

ASA Intrusion Detection Info

Dear Experts - can someone from you let me know the meaning of the attached screenshot. As I am viewing that users are getting compromised. Please elaborate your answers in detail. Thanks in advance.

notification for Vista file on firepower

Hi, I'm getting notifications about the file detection name below when one of the users connected by VPN and tried to download some Medical software package that belongs to Vista application W32.19E0AFBF46-63.SBX.VIOC why the firepower detects it...

Resolved! Help with static NAT statements that use multiple port ranges

Good Morning, I am pretty early in my career, and the Cisco ASA CLI is still a bit difficult for me, so I am posting my questions here at your mercy. Please forgive me if I use the wrong terminology here. I have a Cisco ASA 5505 and I am trying to ma...

SourceFire false positives because of known vulnerability scanner

Hello, Our FMC is gerating/dropping a bunch of events when we perform vulnerability scans on our environment. What is the best practice to remove this noise from the FMC? I do not need the IPS to generate alerts or drop these events.

SSD For ASA 5512-x ?

i have a question about the ASA 5512-x so do i need an SSD carte to add to the ASA to run an firepower service (URL filtring) ? is there any other solution than buying an SSD card because i buy the licence of url filtring and i need to activate it .

Resolved! Prefilter/Fastpath pertaining to ASA X with FP Services

Hi, I'm just looking for clarification regarding the Prefilter Policy and FastPathed traffic as it relates to an ASA with Firepower Services, as opposed to FTD image. Am I correct in assuming that these are functions of the ASA rather than the FP Mod...

ASA policy deployment fails. ERROR: % Invalid input detected at '^' marker.

the following error is issued when trying to deploy using CSM 4.4.0 to ASA 8.5(1). This error only occurs on one context. ERROR: % Invalid input detected at '^' marker. It appears to relate to an interface. And when comparing policies thsi is the ...

Read-only ASDM access for LDAP remote-authenticated user based on AD User Group

Hi forum members, ASA 5580 is provisioned for remote authentication towards Active Directory. The administrator must be a member of AD User Group XXX. New requirement is for a consultant to have read-only access via ASDM and is a member of AD User Gr...

FMC/FTD PBR - Origin domains

Hi Everyone! Giving some tips about our environment, we are three companies at same site, but each one has own domain inside IT structure. Also, there are two internet links and this is my point. - one as the primary and consecutevelly another is th...

Help with understanding SysLogging entries

Hi All,I think i have a pretty simple issue/question. I have a interface called "LSPXSG4". This interface has a ACL named "LSPXSG4_access_in". Within this ACL i have a few ACE's, but the following are interesting: access-list LSPXSG4_access_in line 1...

DNS in a DMZ

Hello, I have a cisco asa 5545, and have been tasked with creating a DMZ for our public facing applications. This far I have created a new vlan/subnet and interface, and now my question is about DNS for the applications we move into the DMZ. Curren...

discover asa user contexts through snmp

Hi, Is there any mib or oids that give the info to discover the user contexts configured in the cisco asa 55XX Thanks, Hari

FTD Site to Site VPN access control policy

When building the site to site VPN in FTD/FMC where does the tunnel endpoint exist (what zone)? For example, in Palo Alto, a tunnel can be placed into it's own zone and the access control policy uses that zone to send traffic to or receive from a r...

Network Security

Forum Posts

Resolved! ASA 5506-X L2L VPN

Asdm real time log viewer syslog connection lost ?

ASA Intrusion Detection Info

notification for Vista file on firepower

Resolved! Help with static NAT statements that use multiple port ranges

SourceFire false positives because of known vulnerability scanner

SSD For ASA 5512-x ?

Resolved! Prefilter/Fastpath pertaining to ASA X with FP Services

ASA policy deployment fails. ERROR: % Invalid input detected at '^' marker.

Read-only ASDM access for LDAP remote-authenticated user based on AD User Group

FMC/FTD PBR - Origin domains

Help with understanding SysLogging entries

DNS in a DMZ

discover asa user contexts through snmp

FTD Site to Site VPN access control policy

about FTD-V

Unable to edit and save a text object

CSCwo71835 - The NAS-IP-Address attribute is missing

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Firepower 2130 -how to resolve plugin 70658 SSH Server CBC Mode Cipher

SSH with X509v3 certificates

FPR‑4145 EOL/EOS ?

Firepower 4125 - how to resolve plugin 157288,

Cisco FMC QoS filtered by application

Disable checking of SIP traffic on FTD via FMC