Hi I have two ASA 5545 in a cluster. the software version is 9.14(2)15. I can't access my firewall with ASDM due to having maximum http sessions. When I run #debug menu npshim -w, I see 5 https connections with CLOSE_WAIT state. There is no session i...
Forum Posts
I just started working on a new client who has two 5506x and a 5516x. Setting up network monitoring I have generally used a "logging history list-name" statement to filter what SNMP traps are sent. I put this into these, and two rejected it, one acc...
Hello All,I have an ASA 5516-x that support two different connection profiles off a single device. The remote user has the ability to select the different connection profiles via the Secure Client application. This configuration works fine. I am tr...
Hi Community,I'm have an issue getting external authentication working on my FMC managed FTDs(firepower 2100s). I have configured the remote authentication server under in the FMC settings and then navigated over to platform settings to enable it on ...
Hello everybody, our customer has 1 cluster of two Firepower 1120 running rel. 7.4.2.1managed by the FMCv running rel. 7.4.2.1 too. The Health Monitor shows the error message:Cisco Cloud Configuration - Unable to reach Cisco Cloud from the device. Pl...
Good day for everyone!We have a lot policy-maps for shaping traffic on our FTD and oneday we have received that no more than 128 policy maps could be defined:[error]: ERROR: % No more that 128 policymaps can be definedUnfortunately I didn't find any ...
hi all,I',m using Firepower 1140 for annyconnect VPN connections to our office. We are not a big office, never more than 20 connections at the same time. Everything works fine for 2 to 3 weeks, and then after that connections start failing until relo...
Hello everyone! I configure my Cisco FTD 2110 managed by FMC (version 7.4.1) to save logs from buffer to flash memory according to this instruction https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/device-config/740/man...
Hi All, Suggest me a firewall with 8 x 10G copper port + 12 x 10G SFP+ port + 4 x 25G/40G QSFP28 port from day one. All ports must be fully equipped with OEM SFP transceiver modules. Cordially Nazirul Bashir.
Hi can someone please help troubleshoot our NAT configuration. I am able to ping Google directly from our ASA, however I cannot ping Google from a host located on the INSIDE2 interface (security level 100). We need to be able to reach smtp.office365...
Howdy y'all,We've recently installed FPR1140's, managed by CDO, and we make use of blocking certain Talos' Categories (Malware, Malicious, Phishing, etc).I understand that the Security Intelligence process is before the Access Rules, and that SI can ...
Good day. We are looking at testing out deploying Cisco ASAv and/or FTD in Azure as part of new requirement. Question I have is it possible to set up high availability (Active/Standby) between two different regions (ie. Active is in one region and st...
Hi All, I m trying to set Destination NAT so that an outside source can send some logs to an inside log collector server via UDP . The translation device in this case is a FMC managed FTD . Please find below the expected flow of the traffic Source IP...
I have seen an issue with an ASA setting up a connection and keeping this connection through a wrong interface. Background: ASA is perimeter Firewall, has a default route towards outside and some routes pointing to inside (10.10.0.0) and some to a tr...
I have a deploy failure on firepower and after that the device won't let me deploy config. It give error and say for partial deploy must first do full deployment force refresh but force refresh give error to me .Can anyone help? i think than must ...
