Is there an easy way to add numerous IP addresses to an object group. I have a spread sheet of IP addresses that I need to put into an object group and the ASDM takes forever to add them especially as many as I have to add. I did not know if there ...
Forum Posts
Hello,Our Cisco ASA 5520 firewall is running with 99% CPU, Processes Dispatch Unit is using over 90 % of CPU, and capture is showing below drop reason : Drop-reason: (nat-no-xlate-to-pat-pool) Connection to PAT address without pre-existing xlate fi...
Dears, My IKEv2 tunnel is not coming up with the below settings , on my end I have a asa and the remote end is check point , I want to know the below is correct configuration or there should be some change, crypto ipsec ikev2 ipsec-proposal AES256 ...
Hi Experts, For the moment we have PC-based firewall (Debian + iptables) to segregate 2 private networks but there is a demand from management to use Cisco instead. Unfortunately our configuration is a bit unusual so for the moment I'm stuck with...
hello Community,I have another question about the VPN integration with any of our FTD versions ( including ASA with FP) with the cloud, i.e AWS VPC.Customer use case : MX Meraki can not be configured to integrate with any cloud VPN. Can you please co...
I would be grateful if somebody could point me in the right direction. On our ASA 5510 the management interface is set up as management only (Subnet 172.24.100.0/24). The above subnet is also used as management access to our other firewalls. We...
Hello, I am performing a switch hardening process. One of our clients has an issue with Cisco 6500 switch. While performing a Nmap scan on our network. We get the following information as a result. I would like to know this possible I can hide ...
Resolved! Cisco ASA - Incoming and Outgoing ACL
Hi all, I'm just trying to cleanup a cisco asa 5516 configuration and I just noticed that some network guy implemented a bunch of outgoing acl on a specific interface.As far as I know, outgoing are usually not needed except in some cases, so I'd like...
Hi guys thanks for an awesome resource! I have a challenge with ASDM v7.9.1.151 (ASA 9.4.6.5) when adding vpn client profiles. As you can see below when typing in profile name profile location is automatically filled in with the wrong file exten...
Hello Experts, Request you to please help me with the information for DNS. We have a VPN gateway, where in all corporate users connect to it using cisco Anyconnect SSL Application. So when the users try to connect to VPN Gateway, Which DNS entry w...
I have 2 different isp I setup following configuration on ASA Firewall 5510 software 9.8. Problem is? when my Primary ISP Go down they transfer traffic on secondary isp .when I primary isp back they not come to primary isp they still on 2nd isp pleas...
I've been fighting this issue for a couple days now, and not sure exactly what's going on. Here's a quick run down: Windows Server 2012 R2 (Domain Controller, running FP User Agent 2.3 local)Firepower Management Center 6.0.1.2ASA 5506-X w/ Firepower...
Resolved! Unlicesed ASA in FMC
Hello, I obtained licenses from Cisco through the partners request site by providing the license key for the fmc vm. When I add my lab 5506 to fmc and deploy the licenses to it the asa is showing unlicensed and Doesn’t support any of the features. Wh...
Hi, we use IPS to protect two separate units - different zones/networks with different rules applied but same Access Control policy. Is it possible to configure separate email alerts for these two units and how? Thanx. Br, Dragan
Hi team We observed one of our sites was isolated as firewall went to hung state and switching over to secondary firewall also didn’t happen. We switched off the secondary firewall and after restarting the primary firewall traffic got normalized...
