Resolved! ACL
can i apply 2 ACLs for inbound direction in fa 0/0 . one for tcp and other for udp ?
Forum Posts
Hello All,Tried ordering Smartnet for ASA5512-MB from CCW. But was not able to order it from CCW. As per the EoS and EoL announcement, the last date to associate a new smartnet is 25 August 2018.How can I order the smartnet?
Hi,I have the below topology asa fw running in active standby mode R1 and R2 are routers which is conneced to isp's In R1 and R2 hsrp is running R1 interface gi0/1 ip address 4.4.4.2 255.255.255.252 -connected to isp router 1 interface Gigabit...
Hello Everyone! I have an ASA with a SSM-10 installed and a trial subscription for the IPS module. The license is valid, however I am not getting signature downloads and I get the error below. The IPS version is 7.1(9)E4. I have the external port o...
Hi All, When trying to upgrade my 5506-X from 5.4.1.5-22 to 5.4.1.8 I get following error: [171208 10:22:07] BEGIN 450_prior_updates/100_run_prior_updates.sh ./upgrade.sh: line 394: /tmp/upgrade.lock/PID: No such file or directory ln: failed to cr...
Hi all, I am trying to make an ACL on my layer 3 switches (in HSRP) that would allow a new VLAN on my network to be accessible via RDP and ICMP from all other user VLAN's. Also, the server VLAN needs to do ICMP as well as TCP and UDP 445 to this ...
Hi, i have rule configured to allow traffic to some applications like :Viber, Skype, Whatsapp Viber is working good, Skype no and whatsapp also not working.... i have added all the available applications that appears when searching the filter lis...
Hello Experts Does Cisco FTD image running on 9300 hardware support BFD feature with dynamic routing? Any documents to refer to? Regards, Sumanta.
Good day guys, I require assistance / Guidance with the setup of ASA. I have a working connection (192.168.40.x network with inside interface 192.168.40.1) this is working fine I then created a Sub Interface (Test) on the same port with a Vlan ID a...
Resolved! ASA 5506-X performance experiences
Hello everyone! I'm thinking about getting myself a 5506-X for home use. I know it might be overkill to some degree, expensive and so on... and to be honest, it really isn't necessary, but I like to play around and some educational purposes play a pa...
I have a Cisc0 ASA 5505, for which I purchased a Security Plus license for last year. My service provider is now telling me that the Security Plus license has an annual renewal fee of over $500. It's my understanding that the Security Plus license is...
Resolved! Convert Back FTD to Native ASA OS
hi all, i've already read and got a grasp of converting the image of an ASA 5500-X to FTD. but i don't see links or docs for converting back from FTD to native/classic ASA OS. i have a spare ASA 5525-X that i want to convert to FTD for my lab but wou...
Hi, I want to insert new deny line under existing ACL. I am using below steps, Please confirm if i am missing any step. 1. create object-groupobject-group network TEST_SITESdescription TEST_Sitesnetwork-object <Test Site IP address>network-object...
IN-ASA5510-01-03001# packet-tracer input DMZ tcp 10.100.22.100 4562 192.168.106.110 443 detail Phase: 1Type: ACCESS-LISTSubtype: Result: ALLOWConfig:Implicit RuleAdditional Information: Forward Flow based lookup yields rule: in id=0xab888a18, prior...
Hi, - Is it possible to configure PBR in cisco Firepower firewalls based on matching the URL and Application as matching clauses? - if it is possible to configure PBR, what are the matching clauses available? - Also request to share the configu...
