I have a 2-part question for setting up a site-to-site VPN with a vendor.Question 1We have /28 subnet assigned to us from our ISP. Our ASA is using .2 and our default route is .1 to the ISP. I do not want to set this site-to-site VPN up using our .2 ...
Dear Friends,I'm looking the solution to resolve the vulnerability on cisco router isr4331. I have attached the screen shot with details. THREAT:The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multip...
Dear Friends,I'm looking for workaround to resolve below vulnerability with Cisco router 4331. From solution I can not found work around. Cisco Internetwork Operating System (IOS XE) Software Secure BootBypass Vulnerability (cisco-sa-c9300-spi-ace-ye...
Dear Friends,I'm looking for solution to resolve below vulnerability for Cisco router ISR4331Cisco IOS and IOS XE Software Cluster Management Protocol Remote Code Execution Vulnerability (cisco-sa-20170317-cmp)I have attached the screen shot. Regard...
how to open port to allow external network to access internal server on ASA firewall
Firepower FTD CPU 07 spiked to 100% earlier today. And it corresponds to the same time there was a spike on snort03. Snort-busy Frame drops - Snort busy started averaging 100 drops/sec.Is there a way for me to identify what traffic may have started t...
Hi All,I have been having a hard time to integrate ISE with my Cisco FTD since most of the articles covers using the FMC. For my FTD device I am using FDM not FMC. What I am trying to accomplish is to block web whatsapps by user usage. I have been ab...
We have several deployments failing when there is a new LSP update on the FMC that gets pushed to the FTDs. It seems like the file copy jus stalls out anywhere between 10-90%. From the /ngfw/var/log/messages i see the following repeating until it tim...
HiWE are going be setting up 12 site to site vpns to a 3rd party provider and they have said they will send us their root cert and we just need to create intermediates for the 12 tunnels from the root cert, is this possible and if so how please.?? Th...
using Ikev2, phase 1 comes up with no issues.PA side is getting "NO_PROPOSAL_CHOSEN".ASA side is getting "IKEv2 Negotiation aborted due to ERROR: Failed to find a matching policy".All our phase1 and phase2 match.yes, PRF is set, I have PRF set for Sh...
Say I have two AnyConnect profiles, one with Automatic Server Selection off and the other with Automatic Server Selection on. If a user opens up AnyConnect, which configuration will be applied to their AnyConnect?
im setting up cisco duo for the first time on asa 5525-x 9.14 . We are currently using anyconnect remote vpn with a tunnel connection profile and a group profile. Can i create a new tunnel connection profile and copy the existing one just change the ...
HelloI have a pair of Firepower 1120 running FTD configured a HA pair and managed locally with FDM. Should I need to manage the units directly, each has a MGT IP and they share the main and standby address on the INSIDE interface:UNIT 1: Management:...
Dear Community, We using Cisco ISE 3.1 integration with AD servers for Auth.C and Auth.Z There have 2 deployment nodes ( Pri & Sec Node ). There have 4 AD servers ( same domain name ). On ISE we join AD DC only 2 AD servers. In case these 2 AD server...
I need to migrate from CSM to FMC for Multicontexts firewalls to Multi-Instances FTD firewalls. however, the regular migration tool does not help as I have more than 12k rules on the CSM almost above 300K ACLs.it will be a big mess with ASA-FTD's cur...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 11-13-2025 12:52 PM | ||
| 11-13-2025 02:22 AM | ||
| 11-03-2025 09:48 AM | ||
| 10-30-2025 12:44 PM | ||
| 10-23-2025 07:14 AM |
| User | Count |
|---|---|
| 3 | |
| 3 | |
| 3 | |
| 2 | |
| 2 |
