dears, I have some question please answer Is it 3DES can be brake or it still considered secure. pls suggest corporate users are using anyconnect client vpn , to get a vpn client we have to enter the https://public ip address of the firewall a...
Hello all I have a strange issue with a new client VPN. When I connect to the VPN I am unable to ping the inside interface or browse the Internet. I have attached the firewall configuration. can any spot what I am missing? Thanks
Hello everyone, I have a problem to create a VPN L2L between 2 ASA 5506-X (see the pictures bellow). I configure my 2 firewall inspired by the majority of tutorials found on the NET. I correctly place client PCs in each LAN, but when I try to p...
Hi everyone! I'm having a problem with ASDM version 7.7(1)150, the FirePOWER configuration tab is missing, I´ve downloaded the lastest version of Java, I have communication from the ASA to the FirePOWER module, I also upgraded the ASDM to the lates...
Hi all, I'm using split tunneling for our corporate users - partly because it makes it easier to manage bandwidth and we aren't trying to be too restrictive, and partly because tunnel all does not work in my environment. To make it quick, the defau...
i just deployed a ftd appliance in azure. however when i putty to it i dont see the setup wizard, rather i am dropped at the system prompt ciscoasa:~$ what is the command to run the setup wizard ?
I want to create a custom rule within the Firepower Management Center that triggers when there are multiple failed RDP login attempts. I am using an existing rule as a template and I have created the rule in the attached screenshot. I am basing the...
Maybe my search fu is weak and I could not find it but I have scoured the documentation for security manager and the install guide (latest version included) appears to have as one of its steps to login with an account that has administrative privileg...
I have two 5525-Xs in active/passive failover. I'm running 9.6(2) at my primary site (I'm upgrading in the next couple days because of cisco-sa-20180129-asa1) and would like to upgrade the Sourcefire modules to make sure I won't have any compatibilit...
We are going to be moving our FMC FS4000 appliance to a new data center in the near future. Does anyone here have any experience with moving their FMC like this? I know that the IP and name changes will require us to reconnect all SFR modules, bu...
Hello, If you look at the below policy inspection by Firepower, You have allow and block permits, etc...Let's say, Rule number 3 also says block country South Korea from any source to any destination and under rule 2, I am allowing access to samsung....
Dears, I Have 3 question here please answer I have a perimeter firewall which is connecting to the internet ,DR and extranets, I have a switches in DR & some switches kept in other company premises (extranets) which are routing through firewall is...
Hi, I'm currently studying routing on the CISCO ASA, and now currently we have a configuration: Now, from checking the config. I have found that the default static route will all go to ISP1 with an SLA option of switching to ISP 2 whenever ISP...
Recently we had a problem with our asa 5580-20. To resolve the motherboard was replaced. The device seems to be working again but when I boot up I get stuck at the activation key. Enter Activation Key Part 1 of 5: Part 2 of 5: Part 3 of 5:...
Hello all We are in the middle of deploying an FTD with IPS for a project. We have seen a large number of the following violations in the IPS event log: Message Priority Classification PROTOCOL-DNS dns response for rfc1918 172.16/12 address d...
