Hello, I got firepower management center virtual 6.0.1 , and asa with firepower services 5555-x 6.0.0.1. I have malware license. My question is - which device is submiting the unknown captured file to dynamic analysis (cisco sandbox in the cloud) and...
Forum Posts
Resolved! ASA static NAT with different ports
Hello, Need help with the following please, Currently, I have this config: object network obj-10.2.1.20host 10.2.1.20 object network obj-92.73.224.134host 92.73.224.134 nat (outside,inside) source static any any destination static obj-92.73.224.1...
Just wondering if anyone else has experienced a lagging in their NGFW2100 or ASA5506-X firewalls. We have one of each of these and a couple of weeks ago we noticed the network seeming to drop for a few seconds every few minutes. If you click to go ...
i put ISE in DMZ zone in fortigate and Users in different Zone , i installed forti FSSO tool in active directory so it can send users with ip mapping to fortigate so i can apply policies based on username , and users are in different zone than ISE , ...
Hi , I am beginner to ASA device. I am having issue accessing Inside from low security level i.e. 80. Below is config relating to those interfaces: interface Vlan200 nameif inside security-level 100 ip address 172.25.100.254 255.255.255.0 !interface...
Hi everyone, Firepower 2110 Threat Defense is in questionI need to set security-level to be 100 on some interface, but I cannot seem to find where to set that up. Nothing on the User interface, and I tried almost all commands in the command line. I e...
Can anyone please send me a link or links on how configuring "connection rate" and "stateful packet inspections rate" on an ASA?It seems not easy to find the linksthanks,Han
Hey all,I am upgrading our ASA 5520 to the recommended version for the latest security vulnerability - problem is I want to keep the old image in place in case something goes awry, and as such disk0 is too full to upload the new image as well as ASDM...
I have an Exchange server running on a LAN on the Inside Interface. Recently a new build of GFI MailEssentials (running on the mail server) caused internet connectivity to fail on that server stopping email flow. I can ping other machines on the LA...
Running into issue with ASA+FP devices across the globe where I cannot get a policy applied to the appliances. It basically times out. Tail the log files seems like the direction I should go but which log should I be using with pigtail? I even trie...
object network GUEST-INTERNET subnet 10.205.64.0 255.255.252.0 object network GUEST-INTERNET nat (extranet,outside) dynamic xxx.xx.199.135 Auto NAT Policies (Section 2) 2 (extranet) to (outside) source dynamic GUEST-INTERNET xxx.xx.199.135 tr...
Hello, We are about to start the journey of migrating many virtual servers from our VMware estate to Azure. We only have about 5 servers in there now, but will move around 100 over this year I think. At the moment I'm just using the NSGs for fire...
Bellow you'll see a display of ASA5510 firewall running config. I'm unable to ping inside host computers from ASA5510 CLI. However I can access the internet from a computer connected to the firewall. Please take a look at the running config bellow. I...
Hi, We are implementing new Nagios to monitor our windows devices via WMI. Nagios and our windows servers are behind the ASA firewalls. As WMI is using random ports between 1024-65535 which is a huge range to open on a ASA 5520.Can we use ASA ins...
I'm a newbie - please be patientWe have an ASA firewall that has several DMZ VLANs.A support company that responsible for the SQL Servers wants to use WMI to query server health. Their monitoring server currently on the internal lan, eight SQL server...
