Hello We currently have a site to site VPN from outside interface 5555x to a 3rd party, Our staff access services inside their network and they can access some servers on our side through the VPN, My question, Is it possible to allow them through th...
Forum Posts
Hi: I have an ASA 5520 configured only for vpn termination. It is not the network's firewall, security appliance, etc. On the primary firewall (non Cisco) I have hairpinning set up to allow local client to access publicly natted resouces by the p...
hi, 1. we have Firepower 2110 device, which comes with asa 9.8.2 image, when we try to connect to asa from FXOS, we are not getting the connect asa option, there is only connect local-mgmt. option. we cross check the configuration with the working ...
I'm trying to setup my FMC 1000 and FP 7030 sensor to send syslogs to an external server. All I really want for now is anything that gets populated under System->Monitoring->Syslog. I don't really care about intrusion alerts or things like that for...
We have a customer that has several McAfee Sidewinder firewalls with 350+ rules on them and they are converting them over to some ASA5545X with 8GB of RAM on them. Are there any tools to assist with the conversion of those configurations to the ASA'...
On our Firepower Management Centre 2000 appliance (running 6.1.0.3) we generated a Certificate Signing Request (CSR) sent it to our PKI CA who issued us with the necessary certificate for the FMC appliance along with the Root certificate and SubCA ce...
I've been struggling with this a bit but we're attempting to forward syslogs to our SIEM and are looking for the following to be captured in those syslogs but I can't seem to piece together the message IDs or logging levels that will give me what I n...
Resolved! Routing across ASA / NAT
Hi, I have searched high and low over the last few days and couldn't find exact answer that would actually work in my case. I have the following setup: Essentially the network connectivity to my home is presented via 'business line' router that offe...
Need to uninstall CX then install Firepower on a live system. Any Docs on creating basic Policies to start with FirePower?
Hello, I read in forums that even without SSL inspection (Man-in-the-middle) enabled the FMC can get information about certificates to make decisions in inspections.I know that an encrypted file is not inspected (malwares can use this to bypass sec...
This is an accidental duplicate of: https://community.cisco.com/t5/firewalls/routing-across-asa-nat/m-p/3724964 Hi, I have searched high and low over the last few days and couldn't find exact answer that would work in my case. I have the following ...
Hi all, I've configured my RV320 to forward port 21 to my FTP server. I am able to connect to FTP from inside my network, although from the internet I am not able to connect to FTP. I've also created a firewall rule to allow from any source t...
Hello , I have been quoted the above ASA with firepower and Firepower IPS. My question is , is FMC required to managed the ASA 5525-x firepower/IPS or can i do this via ASDM? Will i be able to create firewall/IPS policies without FMC? Thank yo...
Resolved! AnyConnect AlwaysOn not working
I have configured AnyConnect with machine certification authentication and everything works nicely. I can log on and is authenticated as expected. Now I want to enable 'always on'. The config is as enclosed. After enabling the 'automatic VPN policy' ...
Is there way to configure the Firepower 2100 as NGIPS in HA. We need to deploy FPR 2140 without making any routing changes in adjacent devices. I can see the options only for Routed/Transparent Mode .
