Network Security

Resolved! IPS on ASA Subinterfaces

Hi, We are in the process of carrying out the following: A. Move our VLAN Layer 3 Virtual Gateways from our core switch to our Internal ASA Firewall. We will create sub-interfaces on the "Inside" interface for each VLAN and use that sub-interface...

Migrating an FMC from a conversion tool BACK to being an FMC

Hi Everyone, I'm working with an FMC that I converted to be used as an ASA to FTD conversion tool. All of that works well (see: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/asa2ftd-migration/asa2ftd-migration-guide-620/asa2ftd_migrat...

Resolved! Bind multiple interfaces on 5506-x

Is it possible to bind multiple interfaces on the 5506-x into one logical interface? The office I am installing the 5506 has 3 PC's and one server. I will be putting the server in a DMZ area and I would like to use three physical interfaces on the AS...

ASA 5555X with FTD 6.2 IPSec VPN

Hello, As per requirement have to configure IPSec VPN between Cisco ASA running FTD with Fortigate OS 5.2.8. Is this supported ? Please help with any predefined template or guide. Thanks, Pankaj

Block user agents on firewall

So this is a totally new thing for me but we have a client who has given us a list of about 1000 HTTP user agents they want blocked and they do not want to do this on the actual web server. I found an old example of how to block an agent on an ASA...

Resolved! ASA Multi context and EIGRP

Hello, Can we run EIGRP on ASA Multi context Mode. I am running 9.8. I want 1 ASA to run EIGRP and another may be static/EIGRP different instance. Regards, Satya.M

Need to know the informations about the IPS

We need to know cli commands to check current session, current bandwidth, peak session, peak bandwidth, max session supported by IPS. And how to check the health of the IPS. and we are using the Platform: ASA-SSM-40 with version Version 7.1(10)E4 ...

Resolved! Connectin an ASA to vPC Pair

Hello, I am hoping someone can shed some light on how to connect an ASA/Firewall to a vPC pair. The design is to connect an ASA via a port-channel to a vPC pair (NK7Ks) The ASA has L3 interfaces and I am trying to find out if configuring a L3 port...

Cisco ASA-5555 X with FTD

Hi, We are having ASA 5555X single appliance with FTD running 6.2, Now we have to introduce HA standby appliance into the network. What is the step by step approach to achieve this. Is there any downtime required for this? Please help. Thanks.

Resolved! Firepower 2100 HA problems

I have two Firepower 2110 in HA (software 6.2.2.1 - with hotfix D applied). The HA is working, but some weird problems, that I encountered. With HA, the FMC will give you critical errors("interfaces not receiving any traffic"), since the FMC healt...

FMC 6.2 VMDK file importing to another server

Hi , I am using FMC 6.2 on VMware platform integrated with 2 Cisco ASA's 5555-x working as Active/Passive. Due to hardware refreshment process we are planning to upgrade VM hardware of FMC. Importing the complete vmdk file to new hardware will be s...

IOS XE sub-ca with Microsoft CA as root-ca

Hi everybody! I am upgrading our DMVPN infrastructure to use ikev2. Part of the project is the replacement of two old IOS CA servers issuing certificates for branch routers. I have two ISR4k routers prepared to work as new CA servers for the DMPVN ...

Resolved! ASA 5508 OSPF LSA message thresholds

I am working on a PCI audit for a company that has roughly 40 routers and (2) ASA 5508s in HA (Version 9.6(3)1). All of the routers and ASA are configured with OSPF. I needed to configure OSPF LSA message thresholds. It was easy on the routers: ...

Resolved! Firepower 4140 License

Hi guys, we are planning to purchase 2 Firepower 4140 for a project, but the client doesn't want to pay for a subscription license for now, but they would like to purchase L-FPR4140T-TMC later.. so my question is, is it possible to purchase the Firep...

Cisco ISE licensing (APEX vs PLUS)

I am currently up for license renewal for Cisco ISE. I notice there is not advance license anymore. Is this replaced by the APEX license? Do I need PLUS license if I have APEX or do I need both? I use Cisco ISE for both posture and profiling.

Network Security

Forum Posts

Resolved! IPS on ASA Subinterfaces

Migrating an FMC from a conversion tool BACK to being an FMC

Resolved! Bind multiple interfaces on 5506-x

ASA 5555X with FTD 6.2 IPSec VPN

Block user agents on firewall

Resolved! ASA Multi context and EIGRP

Need to know the informations about the IPS

Resolved! Connectin an ASA to vPC Pair

Cisco ASA-5555 X with FTD

Resolved! Firepower 2100 HA problems

FMC 6.2 VMDK file importing to another server

IOS XE sub-ca with Microsoft CA as root-ca

Resolved! ASA 5508 OSPF LSA message thresholds

Resolved! Firepower 4140 License

Cisco ISE licensing (APEX vs PLUS)

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Firepower - BVI with port channel sub interface

GeoLocation IP Package Download In 7.4.2 FMC

ISA 3000 I/O contacts for red light kill switch ?

ERROR(567): No database files are available on Cisco Security Manager

CSSM On-Prem with FTD on FMC

Adding an FTD with existing Config to an FMC

Can ASA5555 License transfer to Cisco Firepower 2100 ASA?

ASA to FTD migration

FDM1120 Management Interface IP Address

OSPF Passive interface in FTDs