Network Security

Can an upgrade from IDS/IPS be performed with no downtime when there are 2 5525X in HA? From looking at articles I was planning the following action list but as we have no spare equipment cant practise offline. 5525X are active/standby HA From the...

I am upgrading an ASA5512-X CX with system image file disk0:/asa914-smp-k8.bin, for an ASA5512-X with FirePOWER Services. I will manage it using ASDM, rather than use the FirePOWER Management Center. What kind of image I have to use, .bin file (asa95...

Hello everyone, I have two firewalls puted in cluster (Active/standby) :  the secondary is active and the primary is the standby. I get this log issue :  <161>%ASA-1-105009: (Secondary) Testing on interface X Passed <161>%ASA-1-105005: (Secondary) ...

Hi Can anyone inform me of the best way to setup acl's and nats on an ASA so inside can access the internet but be restricted to accessing the DMZ's.

Which are the most suitable cisco devices for below specifications for network security, control and management. ISE, prime ?  1.4 Campus Controller                                                                                                   ...

Hello, I'm new to ASAs but am nearly copying another config exactly as I'm learning it. What's going on is that my outside interface can send packets to 8.8.8.8 properly, but my inside network drops from the implicit rule. I've been desperately maki...

Was wondering if anyone has feedback on their experience running AMP for Endpoint on Domain Controllers? I have created a Domain Controller policy set with the out of box exclusions and added the recommended Windows exclusions for DC's as well, so in...

Hi everyone! Is there a way to find out a serial number of a firewall in Cisco Security Manager 4.9.0 Service Pack 1? Thanks a lot!!!

Is it possible to modify what alerts get generated or suppressed based on the host profile?  For example, if my DMZ Host is Windows then do not generate alerts specific to Linux.

Can anyone please advise how to configure FTP in both active & passive modes using the ASDM for the ASA. There seems to be more to it than simply allowing access to ports 20 & 21. Kind regards, K Azam

Dear All, We have two different network connected to Level-4 using three leg Cisco ASA firewall. We want to connect these two firewall at dmz level so that DMZ domain can be merged into one. Means two domain controllers are part of same domain. Ca...

I recently replaced a pair of 5510s with 5520s going from 8.2 to 9.1. Aside from ACLs being cleaned WAY up, that's the only thing that's really changed here. The 5510s worked fine in NMS (Orion), but the 5520s will not. SNMP in this case goes over a ...