Dear All, I am running some servers in my network which i want to have restricted access. I only want 8-10 specific users to have the access of these machines. i want this ip 192.168.12.30, 192.168.10.11, 192.168.11.15 to have access to the server ...
Forum Posts
hi. I wonder if ASDM-IDM launchcher supports Windows 2016(R2) version. Below are ASDM-IDM information. Please reply.
We are changing our outside IP address range and I need to change the address on the interface, update the object IP addresses, update the global NAT, etc. on our FP4110. Is there any advice from someone who has completed an external address change ...
Hello, I currently have multiple interfaces on my ASA that are tied to different VLANs with specific access controls between them. These VLANs all NAT through a single outside adapter (20.20.20.1). This address came in a block of 5 from the ISP 2...
I am using ASA 5515x I need to change the admin user password, as well as enable mode password Tried this command first for enable mode password: #enable (with old password) #config t #enable password <new password> #exit #exit Reconnected wit...
Hey everyone, I'm creating a script that adds hosts and groups to FMC, however it seems that when you want to add hosts to a group you need the unique id for that host and not only the name for the host. Which is a bit of a nightmare as you need to c...
How to shut down ASA Site to Site VPN tunnel without removing it? I only want to temporarily shut down the VPN tunnel for testing on another firewall, since the peers have similar interesting traffic, but I don't want to remove the existing VPN tunn...
FDT (6.2.3.6 - build 37) Flex configure allows the addition of EIGRP and ISIS but for ISIS there appears to be no command such as show clns to prove it is working. Has anybody tried this?
HelloI am trying to achieve something complicated (for me atleast) and I was wondering If someone can assist me. Simple diagram,ASA1 -----VPN------ASA2------VPN-------VPN ASA3Lan1 LAN2 LAN3 ho...
Why there's a [any any deny] implicit rule at inside interface? As i know inside int security level is highest 100 + stateful inspection why the software defaulted a implicit deny rule?
Hi,I've created in policy ASA (release 9.3) with SGT as source and destination, but in FTP (Firepower Threat Defense) I just find it as SGT source only.In FTP it is possible to make a policy with source and destination SGT? Thanks
Resolved! How to apply parameter map?
Ok this may seem a bit of a dumb question but I just can't get a straight answer from Googling or from the IOS release 15.2 Security Config guide for ZFW. So,I am editing the parameter map that governs tcp queue length in the OoO (Out of Order) glob...
Hello, I have a new server on my dmz which needs external access to a public IP address outbound over tcp/2001 I also need external users to be able to hit this server externally inbound over https I have setup an external dns called server.mydom...
Hi allWe are using ASA 5500-X firewalls with firepower services. They are installed and active in our network. During the FMC installation, default Access Control Policy is define with default action "Intrusion prevention: Balanced Security and Conne...
Hi Team,We are trying to scan the ASA firewall and getting the below error. Is there any way to resolve this issue? Please sugget.We did a security scan of Internal firewall and found one issue - "TLS Session Renegotiation Vulnerability"The TLS proto...
