Cisco ASA is configured with below commands and integrated with Active Direcoty NPS. aaa-server Radius protocol radiusaaa-server Radius (MGT) host 1.1.1.1key 12345678authentication-port 1812accounting-port 1813!!aaa authentication http console Radius...
Forum Posts
Hi Team, We are receiving critical Alert in the FMC related to INTRUSION AND FILE EVENT RATE ALERT. And the in the Description Events per second is 58.524. Is it because of more Intrusion and File Attacks Detected. How to check this details. ? Kind...
Hello, Is there anyone who can have a better explanation about the performance downgrade issue in the 2017 NSS report? In the report, all the other vendors' product has fewer downgrade performance; but for Cisco FP 4110, the performance downgrade fr...
i have Created a design for data center security with having internal firewall, please help me out to configure this firewall as i am not good in security. the design is consist of following, 2 Nexus N3K-C3524P-10GX switches for Server farm 2 4507 ...
Resolved! Change NAT policy order in ASA 8.0
Hello!!!I want to change nat policy order via CLI.I want rule number 3 move to number 2 and rule number 4 move to number 3.ASA5510 version 8.0ASA(config)# show nat inside srb match ip inside 192.168.1.0 255.255.255.0 srb 192.168.100.0 255.255.255.0 ...
Resolved! Hops not showing in Traceroute after ASA
I'm trying to traceroute through an ASA and none of the hops after the ASA appear. I'm assuming the ASA is blocking the time exceeded responses but can't seem to fix this behavior. The ACL is simple: source any, destination any, service any ip. A s...
hi, i'm trying to FTP an image to a 5515-x but getting error 'no more process' per google, 'no more processes' is just saying 'file/directory not found'. but file is already on the linux server. the linux server is the only accessible remote server...
Resolved! asa dns lookup fails using bvi interface
Hello all,To precise title, quite clear itself i hope, here are some informations.[asa5506x box][version 9.8.2.24]In order, all went fine using a 'classical' interface configuration and DefaultDNS server-group. I changed the physical inside interface...
Need help. Configuring interfaces on FPR4110 FXOS v2.3(1.58), all 1 Gig interface connecting to a single switch. It was no issue for eth1/1, 1/2, 1/3, 1/4 when I set them speed =1gbps, all came UP ok. However after I created a port-channel and ad...
Resolved! Cisco Firepower Hypervisor
Good day Can you please assist, i just need to find out if cisco firewpower management center can run on vmare esxi 6.5
See diagram attachment. I receive the following error in the logs of the ASA: no matching connection for ICMP error message: icmp src Inside: 10.10.10.1 dst identity: 10.10.10.251 (type 3 code 13) on Inside interface. Original payload: icmp src 10....
Hello Experts, We're in a bit of a pickle here. We've been trying to get our ASA here to block the ports affiliated with BitTorrent using a Cisco ASA 5510. The biggest problem is that none of us have really been familiar with this type of hardware....
Need to block vpn connections through android/ios mobiles, with fmc - i have checked in acp - it does not have all types of vpn apps like ex: hotshield please advise
Hello Guys, I am using Cisco ASA 5512-X firewall for my office. I was accessing it through ASDM before implementing the http L7 inspection. After implementation of it i can't access my firewall through ASDM. If i remove the inspect http http-inspec...
Hi, We upgraded NFVIS to be able to change the value of "Serial console" to true for all our images, but we are still unable to access any ISRv or ASAv console from NFVIS. We tried it on several different ENCS and it always ends with a console freeze...
