Network Security

Resolved! Installing a Cert on an ASA 5510 using Microsoft CA

We are having issues getting a cert on an ASA 5510 for out outside interface. All of our PCs have machine certs from an inhouse Microsoft CA. We are trying to put a cert from this CA on our ASA 5510 outside interface so that the end users do not get ...

Resolved! Failover Failed status

Hi Team, We have 2 ASA5515-x in failover Active/Standby mode. Recently, a failover has accured. I had this status : Failover On Failover unit SecondaryFailover LAN Interface: FOLINK GigabitEthernet0/2 (up)Unit Poll frequency 1 seconds, holdtime 15 se...

Assymetric routing on an ASA

We have kind of a strange situation going on. We have a web server hosted in a DMZ located off our DMZ interface on our ASA. This web server has two NICs one of which is in a management vlan connected directly to our core switch bypassing the ASA the...

SMTP Traffic need to allow from inhouse server

SMTP traffic need to hit translate in private IP address. =================================================================================================== InBisco-AHM-ASA5512-FW(config)# sh run natnat (DMZ-Apps,outside) source static DMZ-APP-SRV D...

Firepower Threat Defense 6.2 - Website not loading properly on 4110/FGT

Hi everyone! I'm currently deploying a Firepower 4110 on a client, currently migrating from their old device (FGT). One of the firewall rules for a particular department entails whitelisting of URL's being applied. On the previous firewall, they w...

Resolved! Firepower User Identification

Could someone please tell me if it is possible for remote vpn users (anyconnect users) that authenticated using LDAP in full tunneling mode are redirected to sfr module and then hitting the same access rule when those users connected through LAN? As ...

ASA sftp issue

Hi, I am having an issue getting sftp to work and it seems to be caused by the ASA. I can sftp from the open internet from my home pc to the destination using filezilla, but not using the same machine when I use the corporate connection. Despite a...

ASA ISP link switch when 25% packet loss

Hello,I wonder if there is a way to switch from primary ISP to backup ISP when the primary link has around 25% packet loss?Is there a way to track the % of packets lost and switch the ISP line on an ASA?Thanks,

issues finding ASA license key

Hi, i have an issue with my two brand new 5506-x firewalls. I have purchased some additional features, 2x IPS, AMP and URL 3yrs and 25 anyconnect . I received the PAK numbers and added them to my account. They are still unfulfilled though. To fulfill...

Resolved! rule writing help for Cisco Firepower Management Center

I have some vulnerability scanners that are hitting my load-balancers. The load-balancers are SNATing the connections. So Firepower sees the sources as the Load-balancers going to various destination on my network. However, in the packet, I see the O...

checkpoint to ASA migration

I am trying to migrate checkpoint configs to ASA 5585 using SCT tool, this tool asking me to feed it *.W file from checkpoint which is suppose to be a rule definition file on CP, but I cant find it, does anybody have any clues on this ?-regardsAB

Intra-interface issue ASA5510

Dear Friends, I have an issue with my ASA 5510. I will describe my scenario a little bit: 4 interfaces occupied (Outside, DMZ, LAN, Branch Offices). Outside for internet of-course, On DMZ email and web services (Everyone can reach this network even f...

Resolved! Allow traffic between 2 INSIDE same level security interfaces on ASA Version 9.0.1

Hi,For past 2 days I have been searching and looking to solve this one simple problem on my home lab with ASA 5510 and it seems there is no straight forward answer to that, beside most of the answers that I found are related to older pre 8.3 version...

snmp-server restart ASA 9.*

Hi, Our monitoring system stopped reaching our ASA firewall over snmp, after a software upgrade to 9.4(3)12 I've checked the configuration and it seems ok. What should I look for? How can I restart the snmp service on the firewall? Regards, Filipe...

unable to run/Launch asdm on asa

Hi I have trouble launching asdm, i have enable the https access. but when i run on browser after adding expception on firefox i get below error404 Not FoundThe requested URL /admin/public/index.html was not found on this server. I added the url o...

Network Security

Forum Posts

Resolved! Installing a Cert on an ASA 5510 using Microsoft CA

Resolved! Failover Failed status

Assymetric routing on an ASA

SMTP Traffic need to allow from inhouse server

Firepower Threat Defense 6.2 - Website not loading properly on 4110/FGT

Resolved! Firepower User Identification

ASA sftp issue

ASA ISP link switch when 25% packet loss

issues finding ASA license key

Resolved! rule writing help for Cisco Firepower Management Center

checkpoint to ASA migration

Intra-interface issue ASA5510

Resolved! Allow traffic between 2 INSIDE same level security interfaces on ASA Version 9.0.1

snmp-server restart ASA 9.*

unable to run/Launch asdm on asa

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

Queries with Cisco Secure Client 5.1.3 & ISE

Cisco Research Study! Take a survey for a chance to win $50 gift card

What's the ideal way to implement app-based 2FA for admin login for AS

FTD interface still shutdown after being enabled on FMC

What would be the translated sources in NAT rule on Cisco FMC for FTD?

Port 3306 shows open on a ASA 5525X

FMC Migration from VMware to Hyper-V

License Needed for FMC on Hyper-V