Network Security

Resolved! only one event triggered in cascade multiple context ASA

Hi, We have a pair of ASA 5585-X with Firepower ssp-60. They are deployed in multiple context mode, and the contexts are connected in cascade (traffic passes through multiple contexts). All connections are logged twice in FMC, once on each context ...

Firepower 2110 / ASA SNMPv3 Configuration

Hello, I am trying to configure snmpv3 on the ASA side of a Firepower 2110 but some of the commands are being rejected. I will not be using the FXOS at this time and only the ASA. I tried to type in the following command the same exact way as it i...

NAT drops traffic of same subnet

I have seen strange behaviour of my ASAs, One host 10.60.49.248 can not telnet to TCP/9300 of other host 10.60.49.126 even though they are same subnet. SGBACKFW(config)# packet-tracer input hosting-web-be tcp 10.60.49.248 4003 10.$ Phase: 1Type: F...

Cisco FTD - TCP window size

Hi. I'm trying to setup Remote Access VPN on Cisco FTD 6.2.2. Client (192.168.55.202) can ping IP address on FTD (gig 0/1.509 - 192.168.59.3) but cannot reach the HTTPS web page while using https://192.168.59.3 address on its browser. I captured tra...

Resolved! Estreamer to Logstash?

Does anyone have a sample config they have used to retrieve event streamer data to logstash? Seems to be the only way to get relevant alerting beings there is no api access to retrieve signature alerts or anything like that.

Firesight Management Center Virtual Appliance with High availability

Hello all. It is my understanding that the FMC virtual appliances do not offer HA synchronization. If we have 2 virtual appliances - 1 in a production and 1 in a DR data center. How do we configure these? Would we have to manage them separately? Can ...

Cisco ASA Lic Management during Failover

Thanks Every one in Advance. I am having two Cisco ASA 5515 running in failover. I have Any connect Prem. lic for 250 devices installed in one box. Should I need another 250 device lic for my second box or through failover it will be taken care of...

Resolved! ASA multiple context question.

I need an advised if this is possible to do in multiple context. I have a cisco 5516x and i want to used the the first port for isp and the 2nd port will have sub interfaces for internal network used i.e internal1 and internal2. Just wondering if its...

Resolved! Firepower4100 ASA, is it possible not occupying a data interface for ASA management?

FPR 4100 comes with 8x10G SPF network module. via Quick start Guide, it needs to assgin a one of these 8 ports for ASA management. It is too expensive if only for mgmt access. I may configure inside interface to allow mgmt HTTP/SSH access. However ...

High Transmit Percent Utilization

Hi all,I am kinda new to Cisco ASA... and i have just recieved an alert from the monitoring team saying that there's an alert reading "High Transmit Percent Utilization>80% - on Adaptive Security Appliance 'outside' interface · Outside . So can someo...

How to Resolve this scan result on the ASA?

How to Resolve this scan result on the ASA? Weak Encryption Ciphers identified on VPN Device Weak Diffie-Hellman groups identified on VPN Device Remote Access Service Detected Thank You. vrian

Resolved! Changing ASA IKE Policies

hi, i've been asked to replace our current "weaker" IKE phase 1 and phase 2 policies from 3DES to AES. we have active S2S VPNs that are currently using 3DES and was thinking a way to implement this with minimal downtime (or completely lock out remote...

Using inside interface IP address for PAT

Hi all, I have a direct connection to a remote vendor from my ASA 5516 (9.5(2)) for a hosted web based application. I need to add an IP on my inside interface (192.168.2.26) to use for a PAT address to the vendor. This is the path: Client (192.168....

Network slowness after adding one interface

Hi team, We are using two ISP in Cisco ASA 5516, faced slowness in one ISP.Removed one ISP from FW, after few hours Slowness issue in ISP got resolved. So Added back that ISP to FW. After adding that ISP, got slowness in all machine. If we remove t...

Remote access VPN on FTD. Getting the tunnel up, but no traffic through it.

Hi.I am implementing an ASA-5508-X, administered by a vFMC. Both devices were recently upgraded to 6.2.2.0. This now includes remote access VPNs. Yay!I have managed to struggle through and get this kinda working. A client PC can connect in over the i...

Network Security

Forum Posts

Resolved! only one event triggered in cascade multiple context ASA

Firepower 2110 / ASA SNMPv3 Configuration

NAT drops traffic of same subnet

Cisco FTD - TCP window size

Resolved! Estreamer to Logstash?

Firesight Management Center Virtual Appliance with High availability

Cisco ASA Lic Management during Failover

Resolved! ASA multiple context question.

Resolved! Firepower4100 ASA, is it possible not occupying a data interface for ASA management?

High Transmit Percent Utilization

How to Resolve this scan result on the ASA?

Resolved! Changing ASA IKE Policies

Using inside interface IP address for PAT

Network slowness after adding one interface

Remote access VPN on FTD. Getting the tunnel up, but no traffic through it.

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Cisco firepower - remote access VPN for child domains

Migration query

Firepower 4110, Unable to open up Firepower Chassis Web UI

FTD2130-migration of sec. zones/IGs/IP addresses to new interfaces

Firepower 1120 transparent mode interface best practises?

IPSec VPN tunneled traffic does not require an ACL?

ASA SSH sessions stuck in sh resource usage.

FMC Hub and spoke with multivendor spokes

Do ASA's block ping from an interface to a network via another int?

FMC Error Request Timed Out. Retry after sometime when saving cahssis