hello experts , we have ASA 5525 and want to send and receive the emails from internet and use behind the asa on-prem DNS server and on-prem Microsoft exchange server with the below map exchanger server internal IP 192.160.10.5 Domain controller in...
Forum Posts
Hello, There has been quite a lot of attacks related to the Akira Ransomware, where the attackers are using a vulnerability in Cisco RA VPN. https://www.truesec.com/hub/blog/a-victim-of-akira-ransomware I can see that Cisco have patched the CVE-2023...
HelloI have a Firepower 1120 with no Internet access.How do I configure the device to use internal DNS and NTP?Thanks
Resolved! Object NAT on ASA 5525
Good Morning All,Not sure why this isn't working but I have a ASA 5525 running Version 9.2(2)4. What I am trying to do is add an Object Static NAT. Now on the firewall I see how similar policies are configured and I copied the config, minus the IPs...
Resolved! Rapid Threat Containment
Hi, just wondering, if I can still do Rapid Threat Containment if my FTD (firewall) and FTD (IPS) are separated? Those appliance will be integrated to ISE pxGrid node. Thanks
Hi All, I need your help. We've been dealing on this issue for a couple of months. So the issue is when users connects on our Guest Wifi once they are on office they getting a message no internet. So to fix this they need to turn off/on the wifi then...
It is not installed, it is not a service. Is it necessary to load SP1 when doing incremental upgrades for CSM? We're trying to upgrade to 4.28. We did have CrowdStrike uninstalled thinking that might be a problem. Thanks in advance for any advice. ...
Hello Friends Could you help me to fix the issue in my FTD integrated FMC I have a webserver internal need to port forward 443 and one more windows server need to do same 3389 Kindly help me I getting confusions and struck in NAT Policy and ACP Exam...
Resolved! FPR 1010 ASA HA / Failover issue
A customer removed one of what I was led to believe (install was by a previous company who did no documentation) was a standby FPR1010 that was in a HA pair and sent it back to us due to a fault. It turned out there wasn't any issues with the 1010 an...
Hi.We have an old ASA5555 (in HA) where we wanted to disable the SFR-module for a couple of reasons. We removed the config for the SFR-module:class-map FW-VRF-Firepower-ACLno match access-list Firepower-ACL-VRF-FWexitpolicy-map global_policyno class ...
For those who have to deal with STIGs, https://en.wikipedia.org/wiki/Security_Technical_Implementation_Guide, do any of you know if there's an automated check like SCAPE for Windows machines.I ran into some information on OVAL but that's pretty dated...
Resolved! FDM Web Certificate
Hi,Is there a way to check the expiration date of the FDM's DefaultWebCertificate before upgrading to higher code? Thanks in advance.
Attempting to do a system upgrade of the firmware on Cisco firewall device manger and I get the following error message: "The server encountered an unexpected condition which prevented it from fulfilling the requestNullPointerException"
Hi,I have certain Microsoft applications that use rpc communication, e.g. microsoft DPM (data protection manager) that uses dynamic ports in range of 1024 to 64k.Is there any way I can achieve this in some secure manner instead of allowing all ports...
Hi EveryoneWe are installing the Firepower 3140 and need to use the cable 40G QSFP H40G ACU10M on the 40G Slots.Would anyone know if this will work. I will be most grateful for for your advice as this cable is to be used from another site.Thanks a lo...
