Is it possible to utilize any dynamic IPS | IDS functionality of SourceFire for known malicious IPs and geo-blocking of rogue nation states without the purchase of a dedicated IPS | IDS system. Can I, for example, utilize Brightcloud | Talos to fil...
Forum Posts
Hi community, We have a pair of 4150 FTDs being managed by an FMC 1000. As part of our policy configuration we have a default action of deny for any traffic that does not match an allow policy. We also have logging enabled for this rule. I was look...
Hello all, I have a simple question. I have 2 ASA 5510 in Active/Standby. Active INSIDE IP is 10.1.0.3, failover is 10.1.0.4. Due to an asymmetrical routing issue - I need to change the INSIDE IPs to 10.5.0.3 and 10.5.0.4 respectively. I have a...
Resolved! FAILOVER ISSUE
we have two ASA in multicontext mode. When I connect to primary after few min it got disconnect when I try to login again it login to secondary device. 13:31:11 GMT/BDT May 9 2018Standby Ready Failed Interface check 13:31:24 GMT/BDT May 9 2018Fai...
Firepower 2110 supports Multi-WAN?
We had sold 2 IPS subscription licenses to our client for their two Cisco ASA Firepower modules. In return from Cisco, we received one software claim certificate containing the 1 PAK key. From its description, it is a Cisco ASA5515 Control License....
Dear, We have recently purchased two Firepower 2110 with threat, malware and URL license. Below is the BoQ of the new hardware Cisco Firepower 2110 Master BundleCisco Firepower 2110 ASA Appliance, 1USNTC-8X5XNBD Cisco Firepower 2110 ASA Appliance...
Hi,I'm rather new to the ASA box. recently I tried to use:asa#show ip route <dest_ip>which is not an asa command, ok. But show route does not accept parameter as an destination ip address. I have many outgoing interfaces (20 or so) which are only int...
Resolved! ASDM access of ASA context
Hi, I need to gain access of a ASA Context using ASDM. I am unable to configure ASDM image syntax (asdm image disk0:/asdm-xxx.bin). However the same syntax is valid when used on system context. Please advise how I can fix this. FW1/contex1(config)...
Resolved! 2 ISPs redundancy problem (SOLVED)
I configure ASA 5510 for Redundant ISP links as screenshot shown (Outside is primary and 4G-LTE is backup). However, when the Outside is down, the backup 4G-LTE doesn't work and on one can access the Internet. How can I troubleshoot it?
Hi all respected members, yesterday my sales personals were asking me that if we can deliver the internet on multiple sites using the ASA 5516-X in a active/standby model using bgp or L3VPN. I have attached the picture what they really want. I am not...
Hi, I just loaded my Firepower Licenses to my FMC, Protection/Control, Malware, and URL. But, when I try to add them to the Firepower Module in my ASA5506 the check boxes to enable the license are grayed out. I've deleted the Device and re-added it t...
The client wants to configure ASA 5506-X so that I can access the ASA using ASDM from home computer. I have add this line: http 0.0.0.0 0.0.0.0 outside. Do I need to add a access-list? If so, what's the command?
Hello Everyone, I understand that BGP is currently not on the ASA 5510, 5520, 5540, 5550, and the ASA 5580. I am curious as to why the ASA 5505 supports it and not the models that I listed. I am curious if Cisco has any plans on implementing BGP on t...
Hello All, We are looking for a cluster solution (more than 2 unites) of cisco ASA with IPS/FPM. I could find that only 5585 support more than 2 units but its FPM is end of life. Can anyone suggest a replacement solution for it. ASA Cluster of mo...
