Network Security

Firewall Migration Tool v7.0.0.1 now live!

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...

can't delete NAT created automaticaly by the ASA Firewall

Hi, Recently, we've updated our ASA Cisco Firewall to the following version: Cisco Adaptive Security Appliance Software Version 9.6(3)1Device Manager Version 7.7(1)151 With the ASDM, with noticed 2 problems: 1- I've noticed that the ASDM is unusable ...

ASA 5508-X with FIREPOWER services - block all traffic in case of intrusion

I am trying to implement a solution to block all traffic through an ASA device in case of an intrusion, and the block would be lifted manually later. Any idea how this can be achieved?

Management Access Rules in ASA/ASDM

Can someone explain what the Magement Acess Rules does in the ASA? I read up on it a bit (or tried to), but I am unsure how to use it, or what it is good for. In my mind, it should restrict who you want to grant to-the-box access to (SSH to console, ...

Resolved! SSL Decryption for ASA 5516x with firepower

Hi, Is it possible to configure SSL decryption to inspect the traffic using 3rd party certificate ? I aim having 6 different AD trees behind this firewall with about 500 users. Also is this unit good enough support SSL decryption? Thanks Charles

ASA LOGIN ISSUR

I am having a issue on ASA , When we try to login to ASA BY LOCAL USER OR tacacs user ASA login fail. There is no human error like wrong password . Please help out

Disable unwanted syslog from showing on terminal.

Hello, I am looking for help on syslog logging on to the terminal. Our ASA, logs messages onto terminal which is good. But, I don't want to see all the messages like when a packet denied access by ACL it creates a log and I see on terminal. I want ...

Resolved! Cisco ASA FTD vs Firepower Software

Hi I am confused between Firepower FTD stuff and Firepower Services Software. So following are my questions based on what I understood: With Firepower Services Software module: 1. You have your normal ASA OS and then you download the Firepower Serv...

Issue with active/passive failover with ASA 5520

Hello. I have been trying to solve this issue for 6 hours now and cannot figure it out. I have a unit that is active and another unit that I reset the configuration and am trying to get it to replicate. I type in failover on both firewalls and it ju...

Resolved! Getting error while accessing ASA via GUI

Hi all, we have installed the CA certificate for internal but while we accessing ASA via GUI in chrome browser we seen below error. Obsolete connection settings The connection to this site uses TLS 1.0 (an obsolete protocol), RSA (an obsolete key...

Disable Weak Cipher

Hi, Based on result penetratiion test i have to disable weak cipher on ASA cisco 5516. SSL weak cipher Recomend disable : TLS_RSA_WITH_3DES_EDE_CBC_SHA , TLS_RSA_WITH_RC4_128_MD5, TLS_RSA_WITH_RC4_128_SHA May i know the command to disable and t...

Resolved! Inbound TCP connection denied from x.x.x.x/8091 to x.x.x./49817 flags PSH ACK on interface outside

Hello I need help please, Th is an error i am receiving although i have add the service policy rule for 8091 . I can remote onto the device from server but there is a application running on the PC on using port 8091 other end of the device wh...

Cisco Firepower URL filtering

Hii. How I can which category to a URL belongs in cisco firepower. The Software version of firepower is :-6.2.0 (build 362). Thanks in Advance

Resolved! Cannot add route entry, conflict with existing routes

Why the route will show up he error message "Cannot add route entry, conflict with existing routes". Even the outside and backup route can switch automatically. However, the backup line still no internet. I try to connect the backup line without the ...

Cisco ASA FirePOWER Dashbroad Show No Data

I have configured asa Firepower 5525. When I logging my FMC Dashboard, there is no show any data for 1 hour or 1 day. But when we selected 1 week or 2 week then FMC dashboard showing data. What is the problem ? Please advise us to solve the problem.

FMC stop sending logs on Syslog server

We configured our FMC to send logs to syslog server, however we noticed that it's stopped sending during the working hours and it resumes after the end of the day. Can you help me understand why this instances happened? Also, how can I prevent this...

Network Security

Forum Posts

Firewall Migration Tool v7.0.0.1 now live!

can't delete NAT created automaticaly by the ASA Firewall

ASA 5508-X with FIREPOWER services - block all traffic in case of intrusion

Management Access Rules in ASA/ASDM

Resolved! SSL Decryption for ASA 5516x with firepower

ASA LOGIN ISSUR

Disable unwanted syslog from showing on terminal.

Resolved! Cisco ASA FTD vs Firepower Software

Issue with active/passive failover with ASA 5520

Resolved! Getting error while accessing ASA via GUI

Disable Weak Cipher

Resolved! Inbound TCP connection denied from x.x.x.x/8091 to x.x.x./49817 flags PSH ACK on interface outside

Cisco Firepower URL filtering

Resolved! Cannot add route entry, conflict with existing routes

Cisco ASA FirePOWER Dashbroad Show No Data

FMC stop sending logs on Syslog server

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Change IPS and AMP Policies to enforcement mode

FTD SSE Connector Service down

Problem with ssl decrypt-resign on Cisco Sefure Firewall

FTD reboots and the active firewall losts all of the User ID entries

ASA AD LDAP Authorization belonging to multiple groups

ACL on VTY Line Blocks All Connections

ASA Help With NAT for Printer

Does the FMT overwrite all FTD configuration if only selecting NAT

Can't ping from FTD managemnt to FMC

IG not mapped to SZ on FMC/FTD