Hi, I'm looking for documentation with general tips on how to optimize FTD performance like using prefilter for trusted traffic, disable inspection on encrypted traffic etc. I'm working with a customer that have performance issues a few days every ye...
Forum Posts
Hi Community,i do have an ASA 5516 and can see an active connection from the source adress 10.88.72.11 which is causing several GB of ICMP Traffic to one of our internal IPs.The strange thing is, I cannot find this address either in real-time log or ...
Resolved! FMC Managed FTD Device CLI Password
I have an FTD device that is managed through FMC and working properly.I'm trying to log in to the console port as "admin" but the passwords we use here are not working.the default Admin123 also does not work.is there any direction someone can point m...
I have Cisco ASA 5505 firewall on wich I wanted to install pfsense. First problem I had was to small CF(128MB) so I went and bought CF with 8GB of space. I used old computer to install pfsense on this CF, and I then noticed that pfsense is using ZFS ...
Hi, I am 4-year student to university of since from Vietnam. I have a problem about ping ICMP through ASA. I can ping from R2 from outside to 4.0.0.1 of DMZ or 8.0.0.1 of inside. I can ping from DMZ via inside. Can also ping from DMZ and inside to go...
cisco 9500 layer 3 switch in the head office and C3560CX switches in 5 branch offices. ISP gives an interface to the head office, both data vlan and internet vlan. I want to establish macsec between the branches.can anyone support me in macsec setup?
Resolved! FirePower 1100 lost smart registration
I have a FirePower 1100 for my home lab and for some reason, it lost DNS connectivity and lost registration. I did not notice and now I can't deploy changes. I connected to the CLI and tried to ping from system. When I try to ping from system I get t...
Resolved! FTD Routing question
Hi to all,i am facing the following problem, please refer also to the png attached (i also have some information on the png attached).An IPsec VPN 2811 router tries to establish an IPSec vpn with an FTD. I have setup this config on the lab and i noti...
Hi to all,i was trying to find why the the vpn between an FTD and a cisco router could not come up and concluded to this:When i create the S2S VPN PtP topology if i just add the protected networks, the tunnel does not come up.For example if behind th...
Resolved! Pinging through ASA from Outside
Hi everyone,I have this basic scenario:(LAN) --------- (ASA) ---------- (DSL Router) ---------- (Internet)I am able to ping the DSL Router from the LAN but not vice versa. Is it a common case with the ASA deployed in between or am I missing something...
Hi All,Need your suggestion is fixing the login to ASDM. Getting Login Failed error even the same password works for SSH and also to download the launcher from https://ipaddress/admin. But when i login from ASDM getting Login failed error.I went thro...
hi Cisco,I am using below topology in my lab where ASA in multiple context - C1 and C2 sharing the same physical interface, in different VLANs (sub interface) is not able to establish EIGRP neighborship with 2 cisco routers (point to point). Although...
Resolved! change the Managment IP in FTD by FDM
how can we change the management IP in FTD by FDM (locally managed)?
Hello Folks, I have a pair of ASA5516 with HA mode, ISP provides a high-speed WAN 500Mbps up/download, while doing some speed tests recently we noticed that all our tests from the inside network are not bypassing 100mbps, I checked all inside/outside...
During the FTD HA upgrade from FMC, if first standby is failed /corrupted during the upgrade ,will FMC will try to upgrade other devices in the failover pair or will abort the upgrade?.
