We have a customer that has several McAfee Sidewinder firewalls with 350+ rules on them and they are converting them over to some ASA5545X with 8GB of RAM on them. Are there any tools to assist with the conversion of those configurations to the ASA'...
Forum Posts
On our Firepower Management Centre 2000 appliance (running 6.1.0.3) we generated a Certificate Signing Request (CSR) sent it to our PKI CA who issued us with the necessary certificate for the FMC appliance along with the Root certificate and SubCA ce...
I've been struggling with this a bit but we're attempting to forward syslogs to our SIEM and are looking for the following to be captured in those syslogs but I can't seem to piece together the message IDs or logging levels that will give me what I n...
Resolved! Routing across ASA / NAT
Hi, I have searched high and low over the last few days and couldn't find exact answer that would actually work in my case. I have the following setup: Essentially the network connectivity to my home is presented via 'business line' router that offer...
Need to uninstall CX then install Firepower on a live system. Any Docs on creating basic Policies to start with FirePower?
Hello, I read in forums that even without SSL inspection (Man-in-the-middle) enabled the FMC can get information about certificates to make decisions in inspections.I know that an encrypted file is not inspected (malwares can use this to bypass sec...
This is an accidental duplicate of: https://community.cisco.com/t5/firewalls/routing-across-asa-nat/m-p/3724964 Hi, I have searched high and low over the last few days and couldn't find exact answer that would work in my case. I have the following ...
Hi all, I've configured my RV320 to forward port 21 to my FTP server. I am able to connect to FTP from inside my network, although from the internet I am not able to connect to FTP. I've also created a firewall rule to allow from any source t...
Hello , I have been quoted the above ASA with firepower and Firepower IPS. My question is , is FMC required to managed the ASA 5525-x firepower/IPS or can i do this via ASDM? Will i be able to create firewall/IPS policies without FMC? Thank yo...
Resolved! AnyConnect AlwaysOn not working
I have configured AnyConnect with machine certification authentication and everything works nicely. I can log on and is authenticated as expected. Now I want to enable 'always on'. The config is as enclosed. After enabling the 'automatic VPN policy' ...
Is there way to configure the Firepower 2100 as NGIPS in HA. We need to deploy FPR 2140 without making any routing changes in adjacent devices. I can see the options only for Routed/Transparent Mode .
Hello, I have an ASA 5508-X which I finally got to work. My lan management IP is 172.20.20.1 I log into it remotely with the AnyConnect client (from windows) and I was hoping to use ASDM or SSH remotely but it does not log in. Furthermore, I can'...
Hello, I currently have the ASA 5505 firewall set up to login through a DSL modem (passthrough mode). On the 5505, I set up my outside interface and vlan to connect via PPPoE and it seems to work fine. I recently purchased an ASA 5508 and I've tried...
I am not that familiar with VMware, and I try to use Macs where possible. It looks like the virtual FMC requires VMware. Does anyone know if VMware Fusion on OSX will host it? Thanks. -Pat
About to embark on replacing some 5510 ASA's with 5516X's and have a question. On the ASA's we have the Trend CSC module and I wondered what the Fire power alternative is on the 5516X? Is it just the Cisco ASA 5516-X Threat Defense License Bundle or ...
