Network Security

On my Firepower Center Manager, I am seeing the HI_CLIENT_BARE_BYTE alert/event with bogus IPs that are not within my network, In example with source IP 0.0.0.0 as well as 8.0.0.0 and others to random external IPs most of which either private range o...

I have a ASA 5525 running 8.6.1 My requirement is for server 1 to send web service requests to server 3 and server 4 some relevant config snippets: object network server_3  host 10.1.5.6  nat (inside,dmz) static 192.168.100.6 object network server_4 ...

Hello I have a couple of ASA5550 acting as border firewalls as well as a couple of FWSM as inter-vlan firewalls. I am now working on minimizing half-open connections on the ASA by limintimg the number embryonic connections. Now on the FWSM which is...

Hi,  Getting quite strange ip addresses in src and dst fields which are not part of the customers network, for eg. 0.0.0.0 as a source.  SOme more eg. [119:4:1] http_inspect: BARE BYTE UNICODE ENCODING [Impact: Unknown] From "NAME" at Tue Jul 26 21:...

Hello, Any one configured ASA5585-X threat detection to auto shun IP Address which are doing port scan.. acl-deny is happening to ports which are not open. But i want to auto-shun the same I have tried below  steps threat-detection Basic-Threat th...

Hi Guys, I need a little assistance here. I am configuring a ASA-5512-x. I need to make communication between interfaces of same security level. I tried "same-security-traffic permit inter-interface" and I tried doing static nat, dynamic nat, pat,,b...

Hopefully someone can help me. What is the licensing procedure that I have to follow to get my Firepower Management center up and working? We purchased the Cisco FireSIGHT Management center, (VMware) for two devices. I have the PAK, have received the...

Hello Professionals, Can you help me with these challenges: 1. my https site is not opening on Mozilla firefox but its opening on Google Chrome. has anyone experience this? 2. Is it possible to configure a URL to be redirecting to a secured URL up...

Hi I have done an attempted asa system image upgrade from CLI but have a problem with the old image getting loaded - cannot get the new image to stat after a further reload or reboot I have copied the new .bin image to flash and can see it in flash/d...

Good day, I was hoping that something would provide some insight into Cisco NAT to help clear the air. Now there are a bunch of new NAT options that we have available since 8.3 and above. now can anyone explain how and when we use the following NAT ...

Hi all,   i have this log below: %ASA-4-733100: [HTTPS  443] drop rate-1 exceeded. Current burst rate is 10 per second, max configured rate is 40; Current average rate is 25 per second, max configured rate is 20; Cumulative total count is 15079     h...

The OVF file of a Virtual Defense Center and managed device fails to be imported on VMware with the following errors:The OVF package is invalid and cannot be deployed.File Sourcefire_Defense_Center_Virtual64_VMware-XXX.ovf fails integrity check and m...

Can I do Firesight Active Discovery when Firepower is configured in monitor-only mode.

Hello , Greetings!! Can any one please help on getting the correct upgrade path for 1)  8.0(4) to 9.1 ? (Can i upgrade for 8.0->8.4(5)->9.1 ?) 2) 7.2(5) to 9.1 ? (Can i upgrade 7.2->8.4(5)->9.1?) Gireesh

Hi, I tested out FTD on a 5508. I want to roll it back to normal ASA but I can't get the image to boot via the normal rommon recovery. The images copies via tftp, but then won't boot automatically. If I try "boot" I get: "File system not supported"...