AllOver the weekend I upgraded a couple of ASA5545X firewalls to v9.6.4-3 that are in a HA pair. This upgrade fix the vulnerability CSC35618. A few hours later I received calls that no one could connect to the VPN using AnyConnect. The users were try...
Forum Posts
hello Team can any one help on the configuration that match my final expectation, i have 2 outside interface on the ASA 5520 (outside and outside2), the default route goes to outside interface. in my LAN i have 2 different IP range(X.X.X.X/24 and Y...
hi, i'm going to configure an ASA5525-X Active/Standby FW pair with multiple security context. my question is, do i need to install both FW with the same security license (i only got 1x 20-SC license) or just 1 SC license will do (on the active FW)? ...
Hi All, I have an ASA 5540 which I want to block certain outside IPs say, 10.190.1.0/24 to access certain inside IP, say 10.199.10.5. Can I achieve this with an ACL? I can do it with the firewall at 10.199.10.5 but prefer for it to be all done insi...
Hi all, my firepower has a working realm and a working user agent. I can download group and see hosts. I can't find in my connection event a column with user IP initiator. Can somebody hel me? (I configured a rule with passive authentication and it w...
have an ASA I recently upgraded from old code to newer 9.2 In the old code I would add the following static... static (inside,dmz) 192.168.100.0 192.168.100.0 netmask 255.255.255.0 This would allow hosts in the dmz (with appropriate accompanying ac...
Hi Everyone... I have a strange issue that I have been struggling with for the past 2 weeks. I have a Cisco asa 5505 running 9.1.6 (I updated to latest version to see if it fixed issue, but it did not). I am trying to setup a site to site VPN tunnel...
Trying to upgrade this one 5505 from 8.2.1 to a current (and patched for the recent RCE/DoS vulnerability) version. I have done 3 or 4 others this week but this one is giving me problems. I tried to go from 8.2.1 to 8.4.6 to 9.2.4.25 which I belie...
Hi all I have1Cisco ASA 5525x, 1 3900 Router and 2 Internet connections. what is the best deployment method to supported what I have. 1. Should both Internet connections connect to Firewall Interfaces ? 2. Should Both Internet connections connect...
Hello! Currently we have a existing FPR2110 and all the network is operational. For some reason we do not want the HA setup but want the addtional new FPR2110 firewall to be setup exactly like the existing one. Also note existing firewall is being ...
Whats the best approach to block torrent....keeping in minf that i dont have pix/firewall but router
Resolved! Clientless SSL VPN License SKU
Does any one the correct the Cisco SSL VPN Clientless part number/sku number? It appears that there may be 10 users minimum for this (see attached) https://www.cisco.com/c/en/us/td/docs/security/asa/asa93/configuration/vpn/asa-vpn-cli/webvpn-lice...
Hi We used FirePower Service on two ASA 5555x. but I just Installed FTD service on it. I Wanted to ask if it was possible to activate clustering on these two ASA. Thanks for advisng me.
I accidentally deleted all of the NAT rules on my ASA and now I no longer have internet access. What am I missing here, is there a default rule I deleted by accident? I have an outside interface and inside interface configured. I am unable to get o...
Hi, I need to upgrade to at least 9.4.4. Can I do it directly? Or what roadmap is needed?Another question is which is the latest version recommended for the ASA 5520? Kind regards, Ana Cal UAberta
