Network Security

ASA ACLs

Hi guys, I hope someone can help. I need to do the following actions on the attached ASA * Block all Internet from LAN * Block all connections to 10.56.0.0 /16 * Block all connections to 10.57.0.0 /16 * Allow connections from LAN to 10.56.40.195/32,...

Resolved! ASA with FirePOWER

I want to order ASA 5515 with FirePOWER. Did the new order include free 1 year licence for any FirePOWER feature, or should I purchase automatically licence ? What is the minimum subscription recommanded ?

SSL decryption FirePower - span port

Hi,does anyone know if it is possbible to span out decrypted traffic from FirePower 4110 (mirror port) ?Also, does anyone have any good experience of using SSL inspection on FirePower?Any pitfalls to be aware of?Any feedback is much appreciated.

ASA 5510 Not loading automatically the config when booting up

Hello, I would like to find out why my ASA 5501 is not loading the saved config when booting up automatically? I have never seen that before on a Cisco device, I have to manually copy start run to reload it once is up. Thanks in advance.

Why Update 9.1 to 9.6

Hello we are using a Cisco ASA Firewall pair for basic Access List, NAT and Site-2-Site IKEv1 VPN. The firewall is just sitting there and there has not been any need of configuration change in last 1 year and there wont be any change in configuratio...

Resolved! NMAP Scanning from FMC

Running Firepower Management Center v6.2.0.2 I’m having 2 issues with NMAP and active discovery First issue: Hosts discovered by NMAP are not being added to the network map. Only hosts discovered by passive discovery exist in the network map. Is t...

Resolved! CISCO ASA 5515 IPS Error connecting to sensor

Hello! Problem: I got the following error message when I try to access IPS using CISCO ASDM 7.1(3): Error connecting to sensor. Error Loading Sensor I have tried solutions suggested by other discussions with no success. I am using Java Runtime 6. W...

ASA Firewall Image Upgrade From 8.4 to 9.1

Hi All, We are planning Firewall Software Image Upgrade. We have a cluster with 8.4(4)1 Image, And we wanted to upgrade to 9.1(7). As per Cisco Docs, Upgrade can be in two steps - 8.4(4)1-->9.1(2) -->9.1(7) And this cluster carries almost 3500 VO...

Nat Rule not working

Nat Rule not working | Firewalling | Cisco Support Community Hi, I am newbie and learning to manage the ASA 5505. I have got a site where we have one broadband with one Static IP. I wanted to config...

Looking for CCIE Security Course.

Hi All, i am currently looking for learning and course detail for CCIE security track, will appreciate if anybody come up with help.

Packet Captures VPN traffic on ASA

Dear all, I need to capture packet go through VPN tunnel on ASA. I try to follow guide line with link bellow, but it show packet buffer empty. http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/118097-con...

http preprocessor which direction should I care about

Hi Folks, Any feedback on the following idea appreciated. Thinking to create an IPS policy with no http pre processing outbound. Then create an IPS policy with pre processing inbound. I'm thinking I don't care so much if my trusted servers/client...

Create NAT with secondary Public IPs block on ASA5515

Hi, I have ASA5515 and assigned by ISP first IPs block with multiple NATs on 'outside' interface. Now I am given secondary IP block (completely different set of IP subnet) by the same ISP. I want to use new IP block to create NAT. I have configured I...

SSL decryption performance

Hello, I am working on a DMZ design for a public website and I'm trying to find some information on the performance of the SSL decryption on both FirePOWER devices (such as the 7000/8000 series) and for the FirePOWER service on the firewall itself (...

Resolved! ASA 9.6 cli not back after enter to firepower module - ASA 5545

When I connect to the sfr module console from the console of the ASA, what is the exit keystroke to return me back to the ASA console? After going thru the initial wizard to assign an ip to the module, I can exit and that returns me to the sfr login ...

Network Security

Forum Posts

ASA ACLs

Resolved! ASA with FirePOWER

SSL decryption FirePower - span port

ASA 5510 Not loading automatically the config when booting up

Why Update 9.1 to 9.6

Resolved! NMAP Scanning from FMC

Resolved! CISCO ASA 5515 IPS Error connecting to sensor

ASA Firewall Image Upgrade From 8.4 to 9.1

Nat Rule not working

Looking for CCIE Security Course.

Packet Captures VPN traffic on ASA

http preprocessor which direction should I care about

Create NAT with secondary Public IPs block on ASA5515

SSL decryption performance

Resolved! ASA 9.6 cli not back after enter to firepower module - ASA 5545

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Secure Firewall Cluster interface health behavior

Palo Alto to Cisco Migration Tool count_summary error

Dynamic Split Tunnelling - Android Devices

compartilhar internet com VLANS firepower asa

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

Import json file to FMC

cisco firepower management center virtual gui not shown

Downgrade FPR-1010

FTD interface showing "admin down"

FTD HA Configuration