SPI Enabled or not in FTD My auditor ask the below points evidence, kindly check and pls help us1. Provide screenshot to show stateful inspection enabled on external firewalls in scope.2. Provide screenshot for anti-spoofing access list or similar se...
Forum Posts
Threadname: PTHREAD-1756Rip:Version: 9.20(2)21Hardware: ASAv0x0000000000cb72c7 : snap_mini_dump+151 at ../infrastructure/finesse/snap.c:9020x0000000000cb73ff : snap_dump+95 at ../infrastructure/finesse/snap.c:25450x0000000000cbb11d : snap_handler+573...
Resolved! FTD Route based VPN Question
HiI am just configuring a RB VPN between our FTD and another ISP and I notice the option for backup VTI, does this allow me to add a different source VTI and a different remote Peer IP Address for resilience within the same RB VPN ?? if so how do i a...
Resolved! FTD ICMP question
HiTo allow icmp to traverse a site to site VPN between 3rd party and us is it just the same as allowing TCP/UDP or do I have to do something different? I have created a static uni-directional identity nat rule also the traffic is to be initiated from...
Could you tell me about the subject matter? Recently, we replaced the equipment from ASA5516-X to FPR1120-ASA-K9. In the previous ASA5516-X, the connection was ASDM to the IP (192.168.1.1) of the inside interface in the VPN connection state with An...
Hello, We have a pair of ASA-5555 in spare that we want to re-use these devices. One of the ASAs is no longer showing its Interface Card module. The other device which is the same model with the same modules is showing the module. Name: "module 1", D...
For those of you that have been patiently waiting - 7.4.1 is now live on Cisco.com This release enables the 7.4 feature set for all FTD Devices (excluding those already EoS) as well as delivering additional feature capabilities and a tonne of improv...
Based on the security finding, need to remove software Oracle JDK and change to OpenJDK. May I know any impact on Cisco ASDM software? ASA5525-FPWR-K9 Cisco ADSM launcher – v1.9(7)
Existing objects that I want to either rename or remove. Getting unpleasant messages when I try remove.object network JohnDoe host 15.10.10.45
I need to service Isolated VLANS and I don't want to use VM's or setup a DHCP server for each VLAN. Since I need more than 256 IP's on many VLANS, I'm trying to figure out what to do. I do have 9400 switches connected to the FTD's but I'm wavering ...
Hello everyone,I have little expertise in network security and work for a small company. I need to configure port authentication for a SF550X-24P 24-Port 10/100 PoE Stackable Managed Switch with firmware version 2.5.9.54.What I learned is that I need...
Hi all,I have two RADIUS Servers,all switches are authenticated and authorized via the radius. I have an ACL tied to the vty lines to limit access to the switch. While DC1 is ON I can ssh from one switch to another.When I turn OFF/disconnect DC2 and ...
Hello everyone, I would like to ask for help regarding the configuration of two 3650 switches, one with IOS Software Denali Version 16.3.8prd2, and one with Cisco IOS Software Everest Version 16.6.6. The issue I'm encountering is that once the config...
Hi,Last week we upgraded from ASA 9.18.4.22 to 9.18.4.24 running on Firepower2120 because the firewall reboots occasionaly since we upgraded from 9.18.3.56 due to VPN DDoS attacks.ASA 9.18.4.24 introduces a new bug that kept me up all night to fix it...
Resolved! FMC FastPath vs Trust with logging
Hello,I'm trying to figure out a way to suppress logging to the FMC console for DNS_over_TCP & DNS_over_UDP from Umbrella VAs to the Umbrella public DNS servers. That traffic is cluttering the console. It is trusted and secure. I don't really want to...
