Product: ASA5508-X (Firepower Services)Problem: Cannot access a specific web host I have the subject product in the lab with a few test systems connected. None of the test systems (mixed OS - win, *nix, osx) can connect with any of our sites hosted b...
Forum Posts
Hi,i have a ASA5510 with version 9.1(6)11 installed on it. The suggested version is 9.1(7)19. I can see that a lot of defects were resolved in version 9.1(7)19 but i can not see if there are any security bugs in version 9.1(6)11.Version 9.1(6)11 is r...
Hi all, just wondering if you would know any workaround other than reload. Device: Cisco ISE Product Identifier (PID): SNS-3495-K9 version is 1.4 paths 10.Version Identifier (VID): A I have a syslog configuration which sends the Cisco ISE logs ...
Hi, I have few public IP address e.g. xx.xx.xx.210, xx.xx.xx.211 and i dont know how to create NAT 1:1 I would like to create connection from public IP address xx.xx.xx.211 to local address 192.168.100.200, from xx.xx.xx.212 to 192.168.100.100
Resolved! Firepower block video streaming
Hi Experts, Can anyone advise how to block video streaming websites except youtube.com ? I have a ASA 5506-X with firepower but not really sure how to achieve this. Thank you in advance for the reply.
hi, We have IPSec tunnel on ASAs between our two sites over the internet. I want to exclude communication between two hosts from being encrypted in IPSec. I thought if I add a "deny" statement on top of interesting traffic ACL it would work fine. Bu...
Hi All, there are ten sites connected to central site over MPLS and all internet traffic is going through central site. In central site, we will be deploying ASA-X in cluster (active/active) with Firepower services with all features (IPS, URL, AMP, ...
Hi,We have a firewall service environment where logging is handled with UDP at the moment.Recently we have noticed that some messages get lost on the way to the server (Since the server doesnt seem to be under huge stress from syslog traffic). We dec...
The company I work for is in the process of taking over management of several Firepower 4120 devices that are currently running FXOS version 2.1.1.66. This version is not on the download site. The versions available for download in the 2.1.1 train ...
I have two ASA5512X firewalls in Active/Standby mode.We want now to enable FirePOWER subscription- TAMC - IPS and Apps Updates plus URL Filtering and AMP SubscriptionMy customer does not want to buy the subscription for the standby firewall.He needs ...
Hi Team, In my perimeter, I have ASA firewall, I need to access the ASA eternal interface IP from the Internal server hosted behind internal interface. The requirement is my internal VA server should do VA on ASA through public IP. Internal int...
We have a server that performs various duties, one of those duties is connecting to a remote SFTP server. Currently we are NATing the server to the external interface IP and we need to keep it this way for certain services as it can interrupt them i...
Resolved! 3560X commands doesn't work
Can someone help me on whey the below commands doesnt work xxx# xxx#del flash:c3560e-universalk9-mz.122-53.SE2 Delete filename [c3560e-universalk9-mz.122-53.SE2]? Delete flash:c3560e-universalk9-mz.122-53.SE2? [confirm] %Error deleting flash:c3560e-u...
Hello, Looking to get some community feedback on the latest Cisco firewall products. I have 40 ASAs, all next-gen that i may be getting firepower services for. Here are my questions: -How does FMC and CDO differ? I'm looking to lessen the management...
Resolved! IOS upgrade - Catalyst 3560X
I am trying to upgrade a C3560X-48T-L to the code - c3560e-universalk9-mz.150-2.SE10a.bin from current code - c3560e-universalk9-mz.122-55.SE5.bin What could be the possible issues that I can see during or after the upgrade. Just trying to be cautiou...
