Hi,
I am working on an access list and I have created an object group for IP addresses and an object group for Service. The access list require TCP and UDP ports open. I could write an access list seprate for tcp and upd for example
access-list acl-...
Hi guys,
We are currently looking into replacing our ASA 5510 with a 5512 with FIREPOWER services. My question is, how do you guys filter/monitor web traffic from remote users? Do you have to use the AnyConnect client with Always-On VPN?
Many thank...
We are running Firepower 6.0 on the FireSight and a 7000 series sensor. HTTP traffic which the IPS sensor is inspecting is coming via a web proxy which has the X-Forwarder-For enabled on it. I have checked this by running a capture on the sensor and ...
Hi,
I need to permit traffic from the inside to the outside interface for three specific hosts. Those hosts must be Natted with a specific public IP address.
In your opinion the configuration below could work correctly?
access-list Direttore_Gener...
I do not know why my cisco router had such kind of log. I google for help and someone said it is because of the Bonjour service of Apple. I don't know the exact reason. Can you help me?
Hi all,
I've got an ASA5555-X running 9.2(3)4 that's got two tunnels to our AWS VPC. That all works perfectly and the internal LANs have access to and from the VPC EC2 instances. All good.
However, during the evening when the traffic goes quiet the ...
Hi,
I have an issue with my ASA FW is not working for dhcprelay. I try to configure just for a basic or simple network setup but it's failed,my client cannot get the ip from server.
DHCP server --> ASA Firewall --> Switch --> Client
#Server Ip - 20...
hi all,
sorry i feel like a noob again. it's been a while since i designed/configured from scratch.
a client wants to use an 'outside' interface on an ASA5516-X other than g0/0. is it possible to use g0/1 or other ports as outside interface?
i rememb...
Hi,
I have just inherited a site with a configuration issue that has left me perplexed as I cannot find the cause of the problem. Any assistance with this will be greatly appreciated.
When the C881-K9 is attached to the network to replace a small bu...
I am trying to block facebook website using fqdn, the problem I am facing is that it block all sites
Here is my configuration.
Step 1
#dns domain-lookup outside
#DNS server-group DefaultDNS
#name-server 8.8.4.4
Step 2
#object network OBJ-FACEBOOK.CO...
Dears,
I have one presales question,
On what basis we should suggest a firewall model, in other words if I want to suggest a customer a ASA firewall model what inputs I have to ask customer so that it can be easier for me to decide that for his netwo...
Hi,
noob here. We have created a functioning ASA cluster on our 4110's, and now we need to install FXOS.
One of the engineers says we have to wipe the entire device in order to install FXOS, and honestly I don't know. I did find this this compatibili...
Hello, We try to use our both dsl line at the same time using load charing with PBR on ASA firewall 9.5
PPPOE interface Config
interface GigabitEthernet0/2 nameif outside security-level 0 pppoe client vpdn group ADSL1 ip address pppoe setroute!inte...
I need the best way to do Latency check ,Throughput test and packet loss test on Cisco ASA.
please share the right way to do and the values which are considered good.
