Network Security

Resolved! FMC behind un-configured FTD 6.2 appliance

Good Evening! I have a virtual 6.2 FMC appliance that I'm building out, and it sits behind an un-configured 5506-X FTD appliance. From everything I'm seeing, you have to use smart licensing - which requires access to Cisco's licensing servers. That'...

Resolved! Nat from Public IP to Internal Server using Custom TCP Port

Hi, I need some Advice to Configure ASA Firewall (ver 8.2), I'm really new to ASA, (Done switching so far.. so this is my first task with ASA). My task is simple I have as ASA Firewall which has a public IP Address to Publish some Services. My task...

NAT to the same IP address on two networks

I'm trying to get the following system setup - I want a client to get to two different network each has a server with the same IP address I have an ASA 5520 - ver 9.1(1) I can get one working - for example The commands for one NAT translation are a...

FTD HA on FP4100

Dear All I have a couple of questions about HA setup: 1) When applying VDB updates, how the transit traffic is impacted for cluster or active/standby scenarios during Snort restart? (FP4100 is running in FTD routed mode) 2) Which mode cluster or ac...

Trying to get an external IP mapped to internal server in DMZ? (ASA 5506)

So, I've got a DMZ interface configured, and I've got a host inside it, I'll call it Webserver1. I've got most of it working, however I cannot get the external IP address to map correctly to Webserver1, pinging it gives me nothing and of course I ca...

Resolved! Trust host in Sourcefire IPS

We have deployed sourcefire 7125 with defence center 1500 recently. We get alot of alert through email about 10.1.1.10 with port 445, 10.1.1.10 is our share file server so that is normal to open that port in the server. How could we classify that 10....

Resolved! How to download Cisco Next Generation Firewall Virtual Appliance OVF for ESX

I need Cisco_Firepower_Threat_Defense_Virtual-ESXi-X.X.X-xxx.ovf. Where i can i download it from. I tried following link but it is script file. https://software.cisco.com/download/release.html?mdfid=286306503&flowid=79503&softwareid=286306337&releas...

ASA/FWSM Cut-Through Proxy Login Page HTML Customization

Hi,Is it possible to customize the cut through proxy login page?Any pointers/guides?Thank you.

Downgrade ASA 5545 from 9.2(2)4 to 8.4(7)

Client has ASA 5520 on 8.4(7) and bought a new appliance 5545 which is on 9.2(2)4. 2 Questions. 1. Can i downgrade ASA 5545 to 8 version (8.6.1) the only 8X one avaiable only for ASA5545 and maintain license files? Do i have to backup those in 9.2? ...

Firepower Management Center - import many objects automatically

Hi, I am installing a new Firepower Management Center, and our end customer have many different subnets in their network. Is there any possibility to create the Network Objects automatically or via script? The manual process of creating each network ...

Access from LAN to a server through its public IP

Hi all:I need your help, since I have tried many things and now I'm mind blocked :PIn a 5510 I have 2 networks, a LAN with segment 192.168.200.1/24, a VoIP server in the LAN with an IP 192.168.200.xx7 and public IPs 190.52.191.xx2 / 29, one of which ...

Problem Establing VPN Cisco ASA against Azure

Hello, We are having problems to establish a VPN L2L against Azure. We successfully up the tunnel at phase 1 and phase 2. These are the data: Azure Network: 192.168.69.0/24 Azure Gateway: 192.168.70.0/24 Local Networks: 192.168.100.0/24 192.168.68...

Cisco IPS Global Colleration Health and License not updated automatically

Hello Any one, Global Correlation health is not updated and its showing disable in our Cisco IPS manager , kindly guide how can updated. Also Please confirm how to updated license in my IPS. IGSBRDSBIIPS# sh statistics global-correlationNetwork...

ASA 5525 FAILOVER PROBLEMS

Hey guys, here's a question. Last year, we depolyed 2 ASAs, and they are configured as failover mode. Use these commands: failover interface ip lan_failover 192.168.1.1 255.255.255.0 standby 192.168.1.2 failover interface ip stateful_failover 192...

Expolit and Malware Prevention

Hi, I want to deploy Cisco Firepower NGFW for my customer. My question are 1. Does it important to enable https intercept, so the decrypted traffic can be inspected by IPS module ? I mean, does exploit code (to attack app vulnerabilities) probably se...

Network Security

Forum Posts

Resolved! FMC behind un-configured FTD 6.2 appliance

Resolved! Nat from Public IP to Internal Server using Custom TCP Port

NAT to the same IP address on two networks

FTD HA on FP4100

Trying to get an external IP mapped to internal server in DMZ? (ASA 5506)

Resolved! Trust host in Sourcefire IPS

Resolved! How to download Cisco Next Generation Firewall Virtual Appliance OVF for ESX

ASA/FWSM Cut-Through Proxy Login Page HTML Customization

Downgrade ASA 5545 from 9.2(2)4 to 8.4(7)

Firepower Management Center - import many objects automatically

Access from LAN to a server through its public IP

Problem Establing VPN Cisco ASA against Azure

Cisco IPS Global Colleration Health and License not updated automatically

ASA 5525 FAILOVER PROBLEMS

Expolit and Malware Prevention

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

GeoLocation IP Package Download In 7.4.2 FMC

Cisco FDM High availability

ISA 3000 I/O contacts for red light kill switch ?

ERROR(567): No database files are available on Cisco Security Manager

CSSM On-Prem with FTD on FMC

Adding an FTD with existing Config to an FMC

Can ASA5555 License transfer to Cisco Firepower 2100 ASA?

ASA to FTD migration

FDM1120 Management Interface IP Address

OSPF Passive interface in FTDs