Network Security

Firewall Migration Tool v7.0.0.1 now live!

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...

Cisco ASA 5506-X with FirePOWER fails to login.

Hi... I performed the following upgraded to the ASA FirePower (module) application and it seems the ASDM Launcher stuck at 28% into authentication. Below are the two patch files I used for the upgrade. The pre-install completed successfully however ...

How i can redirect traffic coming from mpls (Private Network) and ssl vpn to Cisco ASA 5515 to cloud proxy (zscaler)

Resolved! Temporary loss of internet

Every so often when we apply SourceFire policies to our firewalls there will be a temporary (approximately 5 minutes) loss of all internet traffic. Does this happen to anyone else? Any idea what could be the cause? I'd say it happens about 10% of ...

Resolved! SourceFire AD agent and MACos users

Dears, we have sourcefire AD agent installed on windows server 2016. all users are shown in the access logs except for user logged in from MACos devices. is there any fix for such issue? Thanks, Maher

Why email alert show " NOT USE"

Hi All does someone know why email alert show "NOT use" after I've done all configuration that I know. BTW, I can't receive any email when system actual detect intrusion event of high or other level expect test email alert. Thank you

Resolved! AnyConnect Full Tunnel _internet Browsing issue

HI Guyz Seeks your valuable update regarding Anyconnect full tunnel configuration issue All my configuration are perfect users are able to connect and all traffics are routed to ASA 5525 except they are unable to browse internet. assume mostly DNS r...

Cisco Security Manager Client installation on Windows 10

Hi Need help to install CSM on a Windows 10 . I get the error message "Installer User Interface Mode not Supported" Regards, Joakim

ASA Active/Standby Failover 'HA state progression failed'

hi, i got 5525x A/S FW pair and can't seem to sync to standby FW. i tried rebooting the standby FW but still the same. suspect might be a bug but need someone's advise first or what troubleshooting i can further do, i.e. re-create failover config? th...

Sweet32 vulnerability workaround on Cisco ASA 5500

I failed PCI scan this month. Sweet32 vulnerability. Testing SSL server 24.xxx.xxx.130 on port 443 Supported Server Cipher(s): Accepted TLSv1 112 bits DES-CBC3-SHA Currently I only have aes256 and 3des-sha1 active for ssl. If remove 3des-sha1, ASD...

Resolved! Firepower Services for ASA upgrade Need help on best path

Ok, I have a 5506, waiting on replacement at some point my firepower services stopped working, I didn't have it in line do to pending swap, but I wanted to upgrade the software and get the latest firepower services setup. Currently on 7.8 ASDM and 9...

flush object-group members

Hi Forum In my ASA firewalls I have a object-group per AWS service/Region and i´m trying to make a simple script to update some object-groups. It will make my script a lot simpler if I can clear/flush a Object-group for member with a single command ...

ASA static nat

ASA version 9.6(3)1 both nat have same configuration except 172.16.100.2 use interface, anyone have same question? this object work fine object network 172.16.100.3_25_xx2 nat (DMZ,xyz) static 202.175.xx.203 service tcp smtp smtp this object not w...

PROBLEM WITH ACL

Hi everyone I study CCNA and have network created in Packet tracer with 4 vlans. I want to restrict some of the specific hosts from www: VLAN 20 hosts 192.168.20.22 and 192.168.20.23VLAN 30 hosts 192.168.30.22 and 192.168.30.23VLAN 40 hosts 192.168....

ASA 5506-X SourceFire Update

Hi,Has anyone updated SF on a 5506-X? I just got two out of the box and tried to update and I get this error:Task Status Your task Installing Cisco Network Sensor Patch version: 5.4.1.1-23 (Local Install) failed at Wed Jun 10 21:11:20 2015Update Ins...

Error: LQ_DN_UNAVAILABLE

There are a lot of messages in my Syslog in Firepower Management Center: Dec 17 2015 10:02:15 firepower SF-IMS[9098]: [28745] ADI:adi.ldap_query_handler [ERROR] Remote LDAP Query failed with error: LQ_DN_UNAVAILABLE And most of users can't be recozn...

Network Security

Forum Posts

Firewall Migration Tool v7.0.0.1 now live!

Cisco ASA 5506-X with FirePOWER fails to login.

How i can redirect traffic coming from mpls (Private Network) and ssl vpn to Cisco ASA 5515 to cloud proxy (zscaler)

Resolved! Temporary loss of internet

Resolved! SourceFire AD agent and MACos users

Why email alert show " NOT USE"

Resolved! AnyConnect Full Tunnel _internet Browsing issue

Cisco Security Manager Client installation on Windows 10

ASA Active/Standby Failover 'HA state progression failed'

Sweet32 vulnerability workaround on Cisco ASA 5500

Resolved! Firepower Services for ASA upgrade Need help on best path

flush object-group members

ASA static nat

PROBLEM WITH ACL

ASA 5506-X SourceFire Update

Error: LQ_DN_UNAVAILABLE

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Cisco ASA workaround for SSE connector failure stumbled on rights priv

Multi NAT with pools

Impact of Enabling FMC HA to FTD

Assigning an EtherChannel Subinterface to an Instance via FMC API

Secondary FMCv in HA - migration to new data center process

Factory-reset FTD 1120 "application installation failed. Launching.."

IPSec VPN between C.2811 and Firepower with only Real IP addresses

any EOS/L decided for 3140

ASA 1010 BGP SNMP OIDs

Firepower 1120 FTD Setup