Had configuration working in LAB. . Just changed IP’s for new test….. now we cannot get into ASDM and access-list are dropping or packets… not sure what is wrong. Below is the configuration and the packet trace. Any help would be GREATLY appreciated....
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,589) -
Cisco Bugs
(41) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(147) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,165) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(33) -
Cisco Secure Firewall Management Center (FMC)
(152) -
Cisco Secure Firewall Threat Defense (FTD)
(189) -
Cisco Security Cloud Control
(8) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(19) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(32) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(263) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(32) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,576) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(322) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(93) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,579) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Open Source and Open Standards
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Automation Analytics Topics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(5) -
Other Firewalls
(1) -
Other IP Telephony
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,780) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(8) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(641) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(25) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I'm using the default ASA config (inside is 192.168.1.1/24) and setup the FirePower module to use 192.168.1.2/24. Both the interface 2 and the MAN1/1 are in the same switch as is my management machine. I can ping the FirePower module from my PC and f...
Hey Guys I am planning to Migrate From IPS-4520 to Cisco FirePower 8350. Do we have any tools to migrate Or is there any right documentation to do that. Please do let me know.
Is there a way to see what country the firepower system thinks an IP is from? I get that I can create a rule and test whether the packet is allowed or denied - but I'd like more feedback from firepower regarding what country it believes the IP is fro...
hello everyone, i have some problem for NAT Hairpinning. so, i have some simple topology on the bellow. i want to ping NAT IP Public (12.13.14.15) from host (10.11.12.13) on the inside interface, but still not working Host10.11.12.13/24 -----------...
Hello, I just want to say that I'm more on the Microsoft side. Working with a client, we setup a Site to Site VPN from Azure to their on-prem, and it's working. The Cisco networking individual provided some concerns/risks for running production loa...
I have an ASA 5505 on a job. It is a smaller business that would have done better with an RV082, but they have what they have. It is running firmware 8.4. The client needed ports forwarded for their FTP server. The port range in this config is tcp 43...
Does this device IDS system have a signature that detects and blocks Java/Python FTP Injections
Hi, I plan to migrate my firewall from Netscreen juniper to ASA. Current FW : - Server all nic card via public ip - got 2 subnet ( public Ip ) = 203.73.x.x/28 & 210.64.x.x/28 - one subnet configure as vlan - Zone only trust & untrust - When configur...
Hi All, We are trying to setup monitoring of our ASA 5550's, which are currently running in multiple-context mode in an HA pair Active/Standby.Firmware version 8.4(1). Our layer 3 management interface is using out-of-band management through the Admin...
Hello, Iìd like to understand if applying reverse nat on ASA firewall is a good practice or is deprecated due ASA's security logic of inside and outside inteface concept. Thank you in advance for any kind reply. Regards angelo
I don't have a ton of experience with ASA firewalls, but I've searched everywhere and I can't seem to find a solution to this. The topology is as follows I have 2 sites connected by a Site-to-Site VPN with ASA and Router.The ASA at DC is work on m...
Hi, I have a pair of ASA5525-X firewalls configured as an active/standby cluster. Single context routed mode. I recently did an zero downtime IOS upgrade [ from Version 9.5(2) to 9.5(2)5 ] where I reloaded them one at a time to maintain traffic flow ...
So coming from the ASA world and jumping into the Threat Defense world, I would not lie I'm feeling lost. Like, completely lost. I have reviewed the configuration guide quite a few times but still can't come to a sane conclusion. Back on the ASA, I ...
Hi Team, I would like to ask on the possible copy of the url or site that is under social networking category in ffirepower/firesight.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 01-21-2026 03:34 PM | ||
| 01-21-2026 11:24 AM | ||
| 01-20-2026 01:44 PM | ||
| 12-31-2025 01:53 AM | ||
| 12-15-2025 09:32 PM |
Top Solution Authors
| User | Count |
|---|---|
| 4 | |
| 4 | |
| 3 | |
| 2 | |
| 1 |
