Network Security

Hi Everyone I am new to Cisco Security world i want to know when we use this statement in asa I tried but didn't find it is a acl statement with Traceroute keyword in end.   eg. access-list Cisco_1 permit icmp any any traceroute   plz help me.

Hi everyone this is my first post in the forum, let me tell you my problem, we are installing sfr(version 6.2.2) modules in a HA enviorement in there we have configure some RA VPN Ikev1, Site-to-Site VPN and EZVPN. We have a problem updating the firm...

So I am working on setting up PBR on FTD and am following this video:   https://www.youtube.com/watch?v=lakHhw9CR5Y It seems pretty straight forward as I have done this before on ASA's.  My question is, is when I deploy the FlexConfig policy, what ki...

I've got a ASA 5506 running FTD 6.2.3.  I am working on enabling Remote Access VPN.   We have a certificate for our domain issued by a public CA, which I have converted with OpenSSL to PEM/KEY files to allow it to be imported.  The public CA's certif...

Having trouble to perform an upgrade on ASA5516-X Threat Defense software Started using FTD version 6.2.2.81 and followed the upgrades according to release. All well until version 6.2.3-79. Upgrade to Cisco_FTD_Hotfix_A-6.2.3.1-10.sh.REL.tar is not p...

I installed FS VMware edition 6.2.0 and then the 6.2.0.1-10 hotfix.  The task completed successfully and I have the option of un-installing the patch.  However, system version still shows 6.2.0.  Is there a way to confirm what patch level I am at? T...

I have an older PIX firewall, it is a PIX-515 running PDM Version 3.0(4) and PIX Version 6.3(5). I am trying to integrate it into a small business network (~15 users). The business has a comcast business gateway with 1 static address that is used for...

hi,  I want to ask what features are available in FTD if I purchase it without any subscription (AMP, IPS, URL filtering etc.). FTD configuration options seems overwhelming and it is difficult to figure out for a newbie to know what can and what can'...

Our issue is that, outside 3 public IPs need to communicate with one of our internal IP addresses. So it is actually a group of host public IP address. Which type of NAT we need to write?

I am relatively new in using Firepower IPS and clearly using the internal/local database for all the logs makes the whole system too slow to search for events and obviously the window of backlog is too small. I would like to push all these logs to an...

Hi,I have a cisco ASA 5520 that i'm configuring.From the actual Firewall (with is a linux server), we have the outside interface eth0 with has a public IP and other sub-interfaces (eth0.1; eth0.2,...) with others publics IPs.I'd like to know how I ca...

I have one vFMC, two FP 9300(HA) and two ASA5585-SSP-40 modules. Recently purchased 4500 FMC appliance. Like to know the best way to migrate from vFMC to appliance based FMC with minimal or no downtime. What configuration can be exported and imported...

Looking for advice on setting up 2 ASA 5512 HA Pair.   I have a primary ASA 5512 configured with all my vlans. I want to setup an Active/Standby pair for HA. I installed the Security Licences on both, the original ASA was not configured with the mind...