Hi Everyone! Giving some tips about our environment, we are three companies at same site, but each one has own domain inside IT structure. Also, there are two internet links and this is my point. - one as the primary and consecutevelly another is th...
Forum Posts
Hi All,I think i have a pretty simple issue/question. I have a interface called "LSPXSG4". This interface has a ACL named "LSPXSG4_access_in". Within this ACL i have a few ACE's, but the following are interesting: access-list LSPXSG4_access_in line 1...
Hello, I have a cisco asa 5545, and have been tasked with creating a DMZ for our public facing applications. This far I have created a new vlan/subnet and interface, and now my question is about DNS for the applications we move into the DMZ. Curren...
Hi, Is there any mib or oids that give the info to discover the user contexts configured in the cisco asa 55XX Thanks, Hari
When building the site to site VPN in FTD/FMC where does the tunnel endpoint exist (what zone)? For example, in Palo Alto, a tunnel can be placed into it's own zone and the access control policy uses that zone to send traffic to or receive from a r...
Hello, We are migrating a juniper netscreen to a Cisco ASA. The firewall is running BGP with the upstream routers. The netscreen has a loopback interface created with subnets that are used for nating. The loop back is created to inject the nat netw...
Resolved! Monitor FTD realtime traffic from FMC
Hi Experts, Is there anyone managed to configure dashboard on FMC which can monitor realtime traffic and bandwidth of subscribed FTDs? I tried to Add Widgets interface status & interface traffic but it seems like monitoring statistics of FMC itself...
Hi all, I am having some problems with a spoke-hub-spoke setup and I'm really stumped. Hopefully some knowledgeable person can help me out... I have three sites: a hub and spokes A and B. Site-to-site VPNs are configured between spoke A and the h...
Hi, would anyone be able to clue me in on the different Firepower and ASA GUI's that you use to control both devices, i've been told multiple different things regarding them. Without having jumped on them yet but having the design and config for the ...
Hi, I am planning to implement BFD on ASA in failover running BGP. Tested it in the lab and seems fine but wanted to know if there are any limitations or need to know facts related to this that I should validate and be aware of. ASA Version - 9.8.2...
Hi, I have ASA 5525 and I wanted to create bi-directional firewall rule, can you please help me to do that? Regards, Ermias
Hello, I have a problem with upgrade of cisco asa firepower 5506 on cisco asa. Now I have version 6.0 and I want to upgrade it to 6.1. Could you please help me to find cli comands to do it ? I need to do upgrade because ASDM not working with error:...
Hi CSC, If we have a prefilter policy and there is a line with action to anslyse, i know this is then sent to the ACP. What I am wondering is, does there also need to then be an ACP line to match that same traffic again or is is sent directly to t...
Hi, We have a data/voice network (VLAN1 and VLAN100 respectively), on the voice network resides our PABX server and i need to access the web interface of this device over our VPN network to which the ASA in question is a part thereof. The data n...
We have a POC using ASA5506-X running FTD image 6.2.3.5-52. Included:1. SSL Decryption - Auto created when configuring Identity rule. 2. Identity - Active Authentication with HTTP Basic and Guest fallback. 3. Access Control - Rule #1 allows cap...
