Network Security

In firepower 6.0 we do have option to display a page for websites blocked to user. If the website contains a malware, is there any option for user to see a warning page saying that website contains malware. I have file policy in place for all types o...

Hi there.  i really confused with my intrusion policy block below signature. I dont know what is 1 instances of http - drop

Hi techies, I know this has been asked several times, but I haven't found a solid answer yet.  I am using ASA-5520 with code 9.1 My Public WAN pool is 198.90.7.x/24 and the ASA outside interface is 74.200.11.180. I have a website at 198.90.7.195 and...

Hi, I am planning to migrate our FWSMs to ASA Multiple context. I will have 4 to 5 security context based on the different zones or functions within the network. From the config point of view it does not look very difficult. However, I would like to ...

Hello to everyone! 1) OID I need to know what is explicitly possible w.r.t polling snmp paramaters, i.e. OID's from the IPS ASA-5515-X software IPS module. For the ASA itself this can be performed via command "show snmp-server oidlist", but how on t...

Hi, Currently we have Cisco firewall 5515-X that acts only for filtering but not blocking any suspicious activity. Now, our ISP is connect to the outside interface of this firewall. Let say, if we want to put in the IPS, it must be in front of firew...

Please help me to get the solution. below are the router input. IOS Image bootflash:/isr4300-universalk9.03.13.02.S.154-3.S2-ext.SPA.bi sh interfaces gigabitEthernet 0/0/1GigabitEthernet0/0/1 is up, line protocol is up Hardware is ISR4331-3x1GE, ad...

I am recieving the syslog message below: %ASA-2-106016: Deny IP spoof from (IP_address) to IP_address on interface interface_name. A packet arrived at the ASA interface that has a destination IP address of 0.0.0.0 and a destination MAC address of the...

Hi all,           Like the title, who can give me URL about Cisco AMP Threat Grid - Cloud? I want to have a try though manual upload malware to cloud so that see cisco's sandbox ability. THX!

Hi Guys, i have a customer that want to manage firepower 4140 Appliance using CSM. As of CSM v4.11, there is support for firepower 4140. But i'm unable to find any deployment guide or any tutorials. Has anyone done this, appreciate any hints or tips...

I need to configure a ASA so that traffic for a internal server say 192.168.1.250 port 8801 can be accessed using the public IP. I want only specifically the ports needed to be routed to this internal server address. If I add a static NAT route in th...

I have a 5506-x with Firepower. The version is 6.0.1.1(24) and managed with ASDM. I had the Access control policy working for URL and Application filtering and it was working fine. Both of these rules in the Policy were block rules. When I tried to a...