Network Security

Firewall Migration Tool v7.0.0.1 now live!

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...

Resolved! Telnet vs SSH

Hi there, Thanks for reading. I’m the new admin at my organization (it’s a big, world-wide org). I’m fighting the entrenched senior leadership about telnet and ssh. We have a few devices with telnet-only enabled. The devices I’ve discovered are a...

Problem with updates after installing 7.3(4)E4

My sensors are now reporting the following, and don't seem to be updating to sig 903. --- Auto Update Statistics lastDirectoryReadAttempt = 16:30:57 GMT-06:00 Tue Jan 12 2016 = Read directory: = Error: Authentication with ASD server failed. lastDown...

ASA Firepower URL Filtering

Hi If we have ASA5516-FPWR-K9, do we still need seperate IPS subscription? secondly if we add URL filtering license can any one know what will be my Bandwidth Management/Control Options.

. getting more vlans on ASA 5515

hello ladies and gentelmen, i hope you can help me. have a little tricky situation. so, i have an ASA 5515 firewall with security Plus license. it supports only 100 VLANS and i need more. is there a way around to overcome this hurdle without incorpo...

5516-X with SFR - Network Discovery is not working

Hi guys, I have an ASA 5516-X with SFR and both are in 5.4.1 version. The FireSIGHT have the protection and control license but the Network Discovery is not working. When the network discovery is configured I can see a message that the license is ne...

Resolved! ASA backup heart beat

Hi All, Is anyone aware of a method to allow additional backup heartbeat if the failover link is down ? Palo Alto offers this functionality . Thanks

Open ports through ASA

Hi All, We use one static ip for internet purposes and currently have port 443 open for our anyconnect VPN. Now I need to open another secure site for windows remote app so users can access the applications from outside so I configured it with port...

ASA NAT - Outside to Inside

Got a tricky one here... I have a Corporate office ASA and a Branch Office ASA configured for IPSEC VPN. All IPv4 address space is being routed from Branch to Corporate (no split-tunnel). This part is working fine... *************** Corp: object ...

Resolved! ASA5508 10 user Premium License Help

Hi Team, I have ASA5508 and I purchased L-ASA-SSL-10 expecting it to be premium license for 10 users but unfortunately it seems not compatible. Can somebody please help me with the alternate license for this firewall? Thanks,

Resolved! ASA to Router config

I'm currently studying for CCNA Security so I purchased an ASA 5520 to integrate into my home network. I currently have a 3845 router with Firewall set up. I am using a port-map and NAT at the moment to allow remote desktop and access to my Plex vide...

ADSM/Syslog Logging

Hi, I have an ASA5520 that i have been having trouble with in terms of logging. We have a static IP on it's outside interface and an additional /28 being routed via it to access multiple servers on the inside network. Trouble is ADSM or Syslog is no...

Cisco ASA configuration issue

Hi Freinds, i am implemented one scenario which can be reviewed in the diagram below , in which i have two firewalls, internal firewall and external firewall , i am doubt about the policy which i applied on my ASA's , which are not working properly...

Resolved! Strange ASA 5515 memory usage

Hey guys, enclosed a picture of Cacti monitoring one of my ASA's (p1). The memory usage is growing rapidly, not sure if since enabling OSPF or since ugprade to ASA 9.5.2.2, but the funny part is, after hitting the limit of 4GB, now picture p2 shows ...

Basic question about SSL decryption

If I were to implement SSL decryption, does Firepower essentially act as a man-in-the-middle allowing the module to see all traffic going to and from the private client and public server? If this is the case, what is protecting the user from having ...