There are about 30+ ASA5505s out remotely that are monitored via an IKEv2 site site tunnel. The NMS software connects to the remote ASA on the inside interface to both ping and retrieve SNMP info (as well as the NMS server is trap receiver. Of these...
Forum Posts
alert udp $HOME_NET any -> $EXTERNAL_NET 123 (msg:"MALWARE-CNC Win.Trojan.Zeroaccess variant outbound connection"; flow:to_server; content:"GN"; depth:2; metadata:policy security-ips drop, service ntp; classtype:trojan-activity; sid:26932; rev:2; ) I...
I installed user agent in the Ad server everything seems fine , the localhost connection to AD , and the connection with the defense center , i changed the network discovery to look for users too , but the defense center cant see any info of logon or...
Hi allI'm doing some POC trials migrating an Anyconnect feature from ASA to FTD since Cisco has now released support for that. I'm using dual authentication where a certificate is used for getting username which is then used for assigning VPN policy....
I have an ASA that is behaving quite peculiar. I am trying to get to (IP's changed for security purposes) 10.16.37.98. This site is a bank that we need to send information to, it just so happens to be the next block of IP's from our same ISP as our s...
hi, i have a ASA-5512x with firepower and firesight. but unable to add firepower on firesight. can ssh firepower from firesight. any advice. regards Aazmi
Is anyone using the asa 5506 on a 100mb internet circuit with crypto and IPS only? Thanks
Hai guys, I have asa with routed firewall mode.and i have configured interface like this: interface Port-channel2.3111 nameif OUTSIDE security-level 0 ip address 1.1.1.1 255.255.255.0 standby 1.1.1.2 And what i still confused is, why 1.1.1.1 or 1.1....
Hi,I don't know this is possible (I can't find it how) but I would like to debug all translations the ASA performs. I would like to view in realtime all translations.Show xlate is a way to view translations I guess, but it is not what I was looking f...
Hi All, There are many interfaces on IPS, can they be simplified with security zones?Cisco ASA 5585-XSSP-20 w/ FirePOWER ServicesIt will be highly appreciated. Thanks,Br,
Resolved! ASA5506-K9 vs ASA5506-FTD-K9
I'm wondering what the difference between the two are.Does an ASA5506-K9 installed with the FTD image become an ASA5506-FTD-K9? Regards,Jens
Hello, Is there any way to achieve implementation of wildcard masks or variables in IP addresses in FTD? Particularly for example I need to create a policy to deny the traffic from particular host to IP addresses ending with .121 in all our branches ...
Hi, I am in the process of replacing an old router/firewall with a Cisco 5506-X firewall. (I'm aware that the 5506 is not a router, I'm working with what I am given..) - note that the layout is the same as with our old firewall/router and that I'm tr...
Hi All, FTD 6.2.2 release supports anyconnect on ASA-5555X?
Hi Experts I have the FMC VM running on KVM on Ubuntu. I can reach gateway router on the same VLAN, but can not reach the Firepower 9300 cluster interfaces running FTD image. I should be able to add the in band mgmt interfaces to the FMC GUI. The clu...
