hi,I need to implement one zone on asa withe several interfaces and no zones. I need to put two interfaces into that new zone. Will implementing this zone in any way break traffic toward other interfaces?br
Forum Posts
HejI am having trouble SCPing to a specific firewall. While I can SCP from FW-1 to 2 other FWs, I can not scp file to this specific FW. From what I see, the config should work but I get the below errorcopy flash:/anyconnect-linux64-4.10.08025-webdepl...
I restored our FMC the 7.3.1 qcow2 virtual disk, then upgraded it to 7.3.1.1-83, which it was running previously. After back on the correct version to match my backup from 7.3.1.1-83 I'm getting a Sybase Status alarm, saying "Test Failed".My first t...
Resolved! ISE Identity services Engine
Hello Guys is there any specific course for Identity services engine (ISE) ?Cheerx
Hi AllI'm a little lost as to which certs correspond to learning to run firewalls. For starters, is the ASA line still active, or kind of legacy? Are there any lines other than Firepower? Does the CCNA teach for these product lines? Last time I check...
Can someone please confirm if the Cisco ASA 5506-X is already obsolete? I've been looking around online and i can tell is already End-Of-Life, but can't really tell whether or not won't receive any security updates or bug fixes anymore.This is how mo...
We are currently replacing our ASA with a Firepower 1010. When configuring the VPN we ran into an issue using a 3rd party certificate when trying to authorize SAML SSO with Azure. TAC suggested we update from 7.2 to 7.3. When updating the device we g...
We have two Firepower FTD boxes that showed a 10x syslog log increase starting late last week. The first box went from 18million logs per day to 180million. Then 2 days later a 2nd box in a different datacenter went from 19 million to over 200 mill...
Hello everybody,yesterday I tried to to upgrade Firepower module in a ASA5508 (rel. 9.16(4) from 6.7.0 to 7.0.6.The FMC is running rel. 7.2.5.1.There were no open deployments and the Readiness Check was successful.After more than one hour I just got ...
Hi,I am trying to create a user test with privlage level 3 with the permission only to see show running-config. Commands are as below. LIMS#conf tEnter configuration commands, one per line. End with CNTL/Z.LIMS(config)#privilege exec level 3 show r...
Hello!I downloaded Cisco_Secure_FW_Mgmt_Center_Virtual300_VMware-7.2.5-208.tar.gz. After downloading I checked MD5 Checksum and SHA512 Checksum. Checksum from Details in the site cisco.com for Cisco_Secure_FW_Mgmt_Center_Virtual300_VMware-7.2.5-208.t...
Resolved! Cisco ISE v3 ISO running on VMware
Hi guy'sI'm trying to run Cisco ISE.iso on VMware although I'm changing process number it doesn't work how to fix this issue my real Physical Process 4 cores and logical process 8.what is the solution i need ISE to practice any solution ?
Resolved! NAT ASA Mapped to Real Port
I am having a hard time with getting Nat to work from external mapped port to real port. I simply cannot remember how to do this on the AS via ASDM can someone review my screenshots and let me know what I am doing wrong here???I am trying to get Outs...
Resolved! ASA5550: inside host can't ping internet
I'm trying to put an ASA5550 between my ISP's modem and my internal network (just my laptop, to start with). From the ASA console, I can ping out to the internet (e.g. 8.8.8.8), but not from the laptop. My laptop can't even ping the ISP gateway, th...
Hi, I am trying to filter based on subnet under event logging on CDO for our cloud delivered FMC. All I see is InitiatorIP or ResponderIP that I can use as my filters. Is there a way to filter based on subnets? like source/destination subnet? I Dont ...
