Network Security

4120 Cluster getting %LACP-SP-4-MULTIPLE_NEIGHBORS: Multiple neighbors detected

I have 2 Cisco 4120 firewalls connected to a VSS with 2 6807 chassis. I am having problems with the spanned etherchannel. I frequently have links suspended and the switch returns a %LACP-SP-4-MULTIPLE_NEIGHBORS: Multiple neighbors detected error. ...

FirePOWER static user mapping

I have a site that does not use AD and has static IP addresses for all devices. I am looking for a way to statically map users to IP addresses in Management Center. Is there a way to do this or use the agent but trick it somehow into using a static...

ASA5515-X VS 5516-X

Hi, We currently have a pair of ASA5525-X's as our external facing FW's and are looking into now replacing our internal FW's. I am currently looking at the 5515-X, 5516-X & 5525-X, although I think the 5525-X maybe over kill for us and also costly...

Resolved! unable to public server

This is driving me a little crazy so any help would be nice. I am having trouble with public server. I was about to one for smtp and it seem to work, but when I tried doing one for the web server using https and http I am having issues. I am unable t...

Defining custom PAM or protocol for ZBF

Working on converting from an ACL to ZBF and running into a snag of a sort. Problem is with an ISR 4331 running IOS XE 03.16.05.S. The protocol, in this example, is using TCP port 2001, communicating with a custom API on a server. From looking at (o...

Resolved! ASA 5505 can Ping Public IPs, Inside Hosts can't Receive Echo Reply

I am having problems receiving echo-reply responses to inside hosts when pinging public IPs. The ASA can ping public IPs and receives the echo replies just fine. I have an ACL to permit icmp from any source to any destination. Inside hosts do hav...

IPS signature update problem

I have my IPS configured auto update signatures. It successfully downloaded the last signature, but i still see an old one installed on the IPS.You can see in the following sh version that the last installed signature is 616, while the last one downl...

Resolved! Firepower 4110 with FTD

Hello I just received a new firepower appliance 4110 for configuration. the first thing i noticed is that i need separate chassis and FTD management interfaces. Also there is a type of interface known as eventing interface. My question is if is it ...

Resolved! Unable to contact LDAP server

Once again still struggling with our new ASA. My new problem is authenticating to our MS Domain Controller. It's a 2012r2 controller and for some reason I cannot connect to it.I can ping it from the ASA no problem, but when I try to test the AAA auth...

Resolved! Cisco ASA 5520 + URL Filtering with Smoothwall Web Proxy

All, I have a Cisco ASA 5520 currently pointing to Websense for URL Filtering. I am about to replace Websense for Smoothwall, should this be a simple exercise of just changing the IP Address within the URL Filtering? Will the ASA have a problem this ...

What NGIPS topics would you want to ask a Cisco expert about?

I'm working on bringing an "ask the expert" program to you where you can chat, in the community forums, directly with a Cisco expert about a designated topic for a set period of time (24-48 hours or so). Right now I want to collect your ideas for to...

Cisco IOS ZBF Firewall

Hi Guys, I have an odd issue, and I have a tac case open on this, and the response from the TAC engineer doesn't make me feel like zone based firewall works how I would expect it to. So I have Zone A and Zone B. I setup a class map to match protoc...

Resolved! Cisco AD Agent version 1.0.0.32 in Windows server 2012 R2 Standard does not work

I installed Cisco AD Agent version 1.0.0.32 in Windows server 2012 R2 but it does not work when I run AD Agent adactrl.exe, it shows me the follow message: Connection Error. Unable to connect to server: 0An exception occured! Connection ErrorFor furt...

ASA 5525X with Firepower high memory utilization

Hi , i have a problem with firepower service , asa 5525x with firepower service was implemented in internet edge and the bandwidth is about 50M. in firepower i just do inspection with ips and during a week the RAM utilization rise about 90percent ,...

Bypass NAT traffic to SFR

Hello, I have created a NAT rule in ASA. But is there anyway to bypass NAT traffic to SFR? as I keep to see some private LAN IP appear at security intelligence events logs. Thanks!

Network Security

Forum Posts

4120 Cluster getting %LACP-SP-4-MULTIPLE_NEIGHBORS: Multiple neighbors detected

FirePOWER static user mapping

ASA5515-X VS 5516-X

Resolved! unable to public server

Defining custom PAM or protocol for ZBF

Resolved! ASA 5505 can Ping Public IPs, Inside Hosts can't Receive Echo Reply

IPS signature update problem

Resolved! Firepower 4110 with FTD

Resolved! Unable to contact LDAP server

Resolved! Cisco ASA 5520 + URL Filtering with Smoothwall Web Proxy

What NGIPS topics would you want to ask a Cisco expert about?

Cisco IOS ZBF Firewall

Resolved! Cisco AD Agent version 1.0.0.32 in Windows server 2012 R2 Standard does not work

ASA 5525X with Firepower high memory utilization

Bypass NAT traffic to SFR

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

configure SNMP inform retry and duration on FMC

FMC doesn't show all SGTs in Connection Log and Unified Events

exercicio

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

BGP and Transparent IPS on 3120

Comm test between subinterfaces and physical ports in ASA Firewall

Firepower 1000 port status blinking on the same time

FTD management interface not coming up after reimaging from ASA to FTD

Firepower 2120: 'configure user delete' causes 'Invalid target user'