We are trying to remediate the RA VPN vulnerability of CVE-2023-20269. We use TACACS+ to login, but there is a local backup account in case TACACS+ goes down. Is there some way to prevent this account from being utilized by AnyConnect?I understand we...
Forum Posts
Hello Professionals,I am having an 'High unmanged disk usage on /ngfw' issue, and after I googling, I got the solution. (https://bst.cisco.com/bugsearch/bug/CSCwb34240) However, unlike others, my case is different. When I do 'lsof | grep deleted', I ...
All, I am able to navigate to api-explorer and execute changes on here (having provided domain_uuid, object_id and policy_id). This succeeds and I get a response of 200. However, when I use the same URL, headers and data (or payload) using a python ...
Resolved! ASA Firewall with BGP AS.DOT notation
I have a firewall with BGP running and the AS number displays as:router bgp 65307.40565It is a multicontext firewall and I see that at the system level, the following command is in place:router bgp 65307.40565bgp log-neighbor-changesbgp asnotation d...
I have a customer who wants a new site to have the same firepower firewall configuration (except the site-specific items) as another properly functioning site. When asked for the firewall configuration information, they sent a 34MB .txt file that lo...
Hi all!I have two Cisco ASA 5585 in failover, Software Version 9.8(3)18.I need to make Port Forwarding with NAT for access from outside host through ASA's interface to inside host. I made settings as always, but the access doesn't work.There are part...
Guys Please help me ..why showing ID numbers instead of policy name in cisco ftd firewall access policy? also this policy not get hit when access from client pc falcon.crowdstrike.com. please check below results : system support firewall-engine-...
Hello all, FMC is not displaying any data in the Product Updates widget. I can see the "animation" showing that is loading, but that never finishes. All other dashboards and widgets are working correctly. The FMC is the 2600 appliance, in version 6.6...
HIOur FTD.s are running on version 7.0.5, Is it possible to implement PBR on this code please.?And also here is my senario I would like to send part of a /21 network which is in its own VRF on the FTD down a IPSEC VPN for its gateway and keep the oth...
howdy folksif i am t-shooting a weird behaviour coming out of one site, we have 2100-series FTD pair.should i PAUSE HA first....then do Restart Device via FMC....or simply Restart Device on the Secondary (non-active) unit....then do a Failover....wa...
Hi allI have an issue setting up SLA on the FTD. (Using FTD GUI) On my old ASA I use 8.8.4.4 as the monitor address for the SLA and its been working for years. On the FTD the second I use any dns ip for the monitor part it fails the line and switch...
Hi All,below is a snippet from an ASA pair in active/standby mode but with standby unit showing as failed.suspect it is because of the SFR missing form the standby FW (only installed on the active unit). did the no monitor-interface service-module bu...
Suddenly the FMC does not display connection events prior to September 8, 2023. While it correctly displays all "file events", "intrusion events" and "security intelligence events". Only the connection events have disappeared.FMC Version 7.2.4
Hey i have a switch, some ap’s with controllers and a ASA 5550 but no router. my questions are: 1. Can I use the ASA instead of a router or do I need a router? I’m planning on configuring vlans so I need something where I can configure router in a st...
Hello Team, I am working on a spreadsheet that lists the current firmware running on our devices, including the date it was installed. Is there a way to find the date of firmware installation on the Cisco FPR2140-ASA-K9 ?I used the sh version command...
