Hi all,I faced a problem when replacing a primary ASA with an RMA unit and want to know where I did go wrong.This is what happened:The secondary unit was active and had all the config.Installed the new primary unit, configured fail over, connected th...
Forum Posts
I was wondering if there is a way to view the means of communication behind the web apps available in firepower? For ex today I was researching how to only allow specific VLAN access to windows updates. I started by searching google and one guy gave ...
We have an ASA 5508-X running 9.16(4)18 that's only being used for client VPN traffic.We have a system that has privacy information on it, and the group policy requires all connection to the server to be encrypted. The problem is, all connections tim...
I am using the latest FTD migration tool to move contexts from our old ASA5585 to FMC without FTD.There is a major problem when doing this conversion as their is no way the tool can apply the destination zone i want and configured it to, it sets it t...
hi,i am having ftd's managed via fmc running ver7.0.1 and the FMC is configured too forward vpn logs to syslog server which is a forescout NAC appliance.Since we are not getting any logs in the destination, i want to know how to verify the vpn logs a...
I am using Cisco Firepower 1120 in High Avalability using FDM to managed the device, but time is showing incorrect as my standard time. It want to change to UTC 5 30, but cannot found any option to change.I tried to change from Fxos as per below scr...
Hi there,With ASA5585-SSP-20, if I didn't have any add-on modules, how many 10G interface is available?Cheers,HL
I've poked around a bit and haven't been able to see a way in order to implement a domain age rule on our Cisco Firepower which is running 6.6.5. I see online that a rule can be created using Cisco umbrella, but is there really not a way to implement...
Team Thank you for your continuous support. I have to upgrade the FTD 2110 HA to one of the customers without downtime. The customer wants us to break the HA into 2 standalone units and then upgrade the standby unit first while passing the traffic th...
Hello All,I need help/suggestions resolving an issue with a FMC VPN Peer not able reach my side although I can reach the other side. The tunnel is up. I edited an existing working VPN. There was two existing network objects and I could ping across...
Hi everyone,I'm unable to access the interface of cisco asa from a vlan which is present on the router connected below. Packet-tracer shows no route to host.
There is a button to bring up variable set option and the configuration has a dropdown type of control but nothing happens when I try to change the variable set. Is this normal or am I missing something?
We have a virtual ftd which 5G tier when we access a server through it, it doesn't work especially database with ports(1521,7506) and file transfer connections(SFTP) doesn't work. We can telnet the server on those ports.
cant ssh to inside interface, only working through the management interfaceIPs are changed into not actual valuesMy source IP is coming from 2.2.x.x from another site and the connectivity we have is via SDWAN.We have below configuration on the ASA:ss...
Hello,Somebody have a image for asa 5510? I can't download form cisco.I got an error like:Launching BootLoader...Default configuration file contains 1 entry.Searching / for images to boot.Error 28: Selected item cannot fit into memoryunable to boot a...
