Network Security

We have a customer experiencing brute force attempts to their RDP servers form randomizing source IPs.  The have ASA with FP IPS in place.  Looking for options to block this.  I've suggested restricting access to the RDP farm to VPN, or moving the li...

Hello Cisco Community, I have a ASA 5506-x with a bunch of vlans (sub-interfaces) is there anyway to disable the security levels and purely use ACL's?

Hi everyone, We are planning to buy additional control license to block application like Psiphon3.exe. Is it already possible to block that given application? I already read some thread that although there is category under vpn/proxy and the psiphon...

Hi Team, We have been asked to confirm if we can achieve the below using firepower solution (NGIPS or NGFW): Blocking of Whatsapp client on the end user machineBlocking of file uploads but allowing downloads from the drop box based sites on interne...

Hi Team, Is it possible for the NGIPS to understand the presence of application on end user system and then take decision of blocking the network communication of the same like for example the AV is not present then block the communication of that d...

Question on FireSIGHT / FirePOWER TA subscription license. Sensors come with perpetual Protect and Control licenses but require TA subscription for system updates.  What is the extent of updates covered by TA license? Is it signatures only? Will Smar...

Hi all, i wanna configure my asa to get access to 2 VPN link the first via gateway 10.240.20.1 and the second via 10.240.30.1 but the ISP router use the intervlan routing in both interfaces i have just 10.240.20.1 but i can ping 10.240.30.1 via 10.24...

Hi All, Does anyone know of a command to clear the maximum conn counter on a Pix 501.  Have had a look around the internet but can't seem to find a command that clears it? Really don't want to have to do a reboot! Thanks Shaun

Hi, How to configure summer-time daylight savings in FirePower Management Center? BR,  Kiki

Hi, I didn't find any documentation how to restore a failed FTD, for example after a hardware RMA or a failed upgrade, as in my case. I've already reimaged the FTD and want to re-register it with the FMC. It's part of a failover pair too in our case.

Both icmp and icmp error inspection is disabled in FTD 6.2, was enabled in 6.1. This breaks e.g. ping through the FTD and isn't mentioned in the 6.2 release notes. Is this a new bug caused by the addition of FlexConfig or deliberately changed, becaus...

Hello, I have an NAT statement which is calling two pre-defined objects. Now I want to change  attribute of the object. I need to know will it take immediate effect to the NAT statements or I need to delete and re-create the NAT statements. If NAT ...

before i was able to access my both ASA's ASDM with proxy setting in my PC. After i upgrade one ASA, can't able to access with proxy setting in PC? I'm still able to access other ASA via ASDM. Can any one know this ASDM access with proxy setting in ...