Network Security

Resolved! Cisco ASA error deleted rules

HI I have a situation where it seems some error appeared on the fw and deleted rules. They are not sure what logs they have right now. In any case what logging levels can track this and how can I go ahead troubleshooting? In this case config...

Resolved! ASA mail flow with 2 ISP

I have 2 ISPs that feed my ASA 5516. I have a NAT that routes incoming mail from one ISP to the mail gateway. this weekend that circuit went down so no mail was flowing in. I'd like to be able to add a nat from the other ISP to the mail server. is...

WRVS4400N v2 - How to upgrade tha SSL certificate (current is SSL v3)?

My WRVS4400N V2 router is updated (V2.0.2.2 firmware). But, when I access over Internet, using https (firewall -> https its enabled), some browsers cannot open because the SSL version is older (V3). How can I upgrade de SSL version of https?

Anyconnect client detecting

Hi,I need to block Anyconnect Client for some users using Firepower. I found APP in the base "AnyConnect SSL Client" but it doesnt work, firepower cant detect this application and cannot block it.What's the reason? Is it possible to block Anyconnect?

Firepower 8250 Drain of unprocessed events from Connection Events

Hi There We have the below critical alert from one of our sourcefire devices it comes and goes.Drain of unprocessed events from Connection Events. Any ideas would be appreciated.

Resolved! 'crypto key generate rsa' necessary for SSH?

I read from the manual that the key pair will be used for SSH but just wonder does the command 'crypto key generate rsa' is necessary to enable SSH on ASA?I can access to my firewall via SSH but when I checked in the configuration on ASA firewall by ...

Management interface / network is separate from the VPN S2S

Hello community,I want to confirm if the Management network is separate when we rare managing remote FTD device through FMC.When the VPN tunnel will be down for any reason are we still able to manage the remote NGFW via FMC still ?Typical use case fo...

Resolved! Self Zone

I just came into configuration of Zone based firewall. There is a built-in Self Zone when you configures the zones on the firewall. My questions is: What is the Self Zone? What is the purpose of having Self zone in the Cisco IOS Router for zone based...

Resolved! FMC virtual Time different in Gui versus in Shell

Hi, Virtual FMC running 6.2.2 The time in the Gui is different to on the cli. Both are set to use the same NTP server. can anyone explain the difference? It seems that FMC can pull its time from configuration within the product package (connection e...

Comments in access policy rules

I've just begun using the REST API for FMC Version: 6.2.0 to provision access policy rules into a Firepower. This has been a bit of a guessing game, because the API Explorer doesn't seem to cover rules, much less proper JSON for creating them. So fa...

Firewall Blocking Routing Between Internal Networks

I ran into an issue a while back that I fixed, but couldn't understand why it was occuring. I manage a pretty standard network that goes ISP->Firewall->L3 Core Switch->distribution switches. My issue was that the firewall was blocking routing between...

Resolved! Firepower FPR 4100 FXOS upgrade Failure

Hi all; I was trying to upgrade FXOS in Firepower chassis Manager (FPR4100) to 2.1.1.73 version, once the upgrade completed the chassis reloaded but unfortunately I lose communication with the chassis management port, When I've checked it through con...