I have a pair of Cisco 5525x Firewalls running code 9.7.1 in multi-context mode. I have 2 contexts that require to run independent BGP instances. Is this a supported configuration? If yes, can you shed some light on the configuration side. Based on w...
Forum Posts
*Mar 26 18:52:38.403: %SSH-5-SSH2_SESSION: SSH2 Session request from 47.96.98.30 (tty = 0) using crypto cipher 'chacha20-poly1305@openssh.com', hmac 'hmac-sha2-256-etm@openssh.com' Succeeded *Mar 26 18:52:47.210: %SSH-5-SSH2_USERAUTH: User '' auth...
Hello,I have a router asr1001-x that is configured for "LNS". There is already a vpdn-group 1 that is connected to a LAC. I want to configure a second vpdn-group to connect it to other LACs from another operator, but I have the following error messag...
Does FTD3140’s strict FXOS data plane and dropping the traffic locally (ingress/egress) unless the VLAN is being tagged as Trust? Is that somehow a requirement in FTD3140 FXOS?
Resolved! How to check Smartnet service?
Hello everyone, I'm from VietnamOur company has purchased service Smartnet for CISCO C9300, what should I do to check the status of this service package and send support requests to TACThanks for your reply. Have a nice day.
We are spinning up a new set of core switches and changing the internal IP Address scheme at the same time. I was wondering if it was possible to have multiple internal interfaces in a single security zone. The goal is to complete the new switch conf...
can someone drop plan of action how can i replace Replacing CA certificate for FTD- FCM(firepower chassis manager) or the guide
I would like to monitor the FTD via SNMP on the FTD subinterface. My monitoring system is coming from outside, and should be polling the inside interface.However, such traffic is not possible. I have read that it is not possible to communicate with t...
I'm having trouble figuring this out from the configuration guide, and ChatGPT is giving me answer that I'm questioning.I have an ASA (technically a FPR in ASA-only mode) on v9.20. I'm running AnyConnect, but I want to have two groups that each forw...
Hi. I believe it's a simple topic which has not been explained very clearly. I read about Tunnel & Prefilter rules on Cisco website and even on the books, but none of them was clear enough. So, Would u ask my questions here? 1. supposing we have n...
Hi colleagues, I've encountered the following situation - the system shows the following warning messages for rules in ACpolicy:Our scheme in general.We have an FMCv is deployed in the DC, which controls 2 FTD devices (FPR 3140). An Identity Policy...
Hello,in ASA Version 9.20(3)7 we tested the new threat-detection servicehttps://www.cisco.com/c/en/us/support/docs/security/secure-firewall-asa/222315-configure-threat-detection-services-for.htmlthreat-detection service invalid-vpn-accessthreat-detec...
Simple scenario, one FMC managing two pairs of firewalls in HA. To repeat there is one FMC and no plan to deploy another for redundancy. If FMC was to completely fail, I'm guessing the firewalls keep working with the last pushed FMC config. If I need...
Hi Team,I would like to know if there is a way to change the FCM syslog port.In Web interface there is no option available.Is there a way to change it via cli?
HelloWe have a lot of clients getting the following error when contacting diffrent sites: ERR_SSL_PROTOCOL_ERROR, we have read that SonicWall and Palo Alto also have these problemes. Solution is to turn off "TLS 1.3 Hybridized Kyber Support" in chro...
