Network Security

Resolved! ASA VPN policy based on AD groups

I am using Anyconnect VPN in ASA. ASA is done radius AAA to ISE and then to AD. how can ASA assign different group policy in ASA based on the AD user group. Intention is to assign different IP pool in ASA based on the AD user group (user connecting v...

Unable to Ping VPN ASA Firewall from Backend Server, SNMP Walk Works

Hello,I'm facing an issue with network connectivity between two firewalls. Here's the setup:Backend Server IP: 10.96.16.245Backend Firewall (Cisco ASA): The default gateway for 10.96.16.1VPN Firewall (Trust IP): 10.96.18.240Problem:From the Backend S...

L2 Trunk encryption

Hi, we are going to move our offices between buildings. Our ISP is able to provide us L2 1gbps QinQ line between buildings for 2 months so we can start moving services and servers partially. The thing is that L2 is not encrypted anyhow from them. We ...

Resolved! Cisco FTD-Virtual

Hi, not sure if this is the correct forum but I had a question. I was dabbling with the idea of going FTD-V but was curious about it's limitations. Am I restricted to having 4 Ports only, or can I pass through 2 NIC's, 1 2 Port for WAN and then Maint...

Active directory computer object created by FMC/FTD AD integration

Hello everyone,We noticed there are computer objects corresponding to our cisco firewalls in the default computers OU of our AD. I'm guessing this was created with the realm configuration we did in the FMC.My question is, can we move those object to ...

Help with asa 5545 x config commands

Hi!Can someone please tell me the commands to setup asa 5545 x ? they are different from the 5510 i had an i can't configure it.

IPsec session (Phase 2) hang. Cisco Secure Firewall (Firepower)

Hello colleagues, I have experienced the IPsec (Phase 2) session hang issue several times with different clients.Customers have been contacted with the problem that the tunnel is in an active state, but traffic is not passing through it.Attempts to r...

SnortML

I have Ubuntu 20.04 and Snort3 installed and run well in detecting some type of attackes using the required rules. Now I want to use SnortML and just want to see how it can be used in my invironment to detect an attack that it should be pre trained o...

Using ftd to block subdomains on the internet.

I need to lock javada1.oracle.com, javadl-esd-secure.oracle.com, java.com and java.net.Can I do this using a FQDN object and a deny access rule? What is the process for blocking subdomains with the ftd?

@cyber security course

How to enroll into free cyber security course.

Asa 5520

Having hardware issue. not powering on.

CSCwd11825 - FDM upgrade failure due to HTTPS cert expired

This same issue affects my FPR-2110 attempting to upgrade from 7.0.1-84 to 7.0.7-519 or to 7.2.7.500. The system always reboots in a rolled back state without the upgrade having completed.As the work-around seems to suggest creating a new cert, any t...

Unable to authorize access. FPR1010 FDM Fresh reset

Unable to authorize access. If you continue to have difficulty accessing this device, please contact the system administrator. Have erased config 5 times, waited the hour for the system to reboot. 'connect ftd' and local management. I have change...

Resolved! FMC 1000 to HA FMC 1600: Upgrade Strategy & CUFA to ISE-PIC Migration

Hi Dears, I’m currently managing a Cisco FMC 1000 running version 6.6.4, which oversees 6 Cisco Firepower 2110 firewalls (also on 6.6.4) in an active-standby setup. I’m planning to: Replace the existing FMC 1000 with two FMC 1600 in a high-availabili...

Change Syslog Port Cisco FirePower Management Center

I'm in a situation where I need to change the port used for Syslogs from the FMC to a server on the same subnet. I was able to change the port with the SFR modules w/o any issues, and I know I can't change the port in the GUI for the FMC itself, but...

Network Security

Forum Posts

Resolved! ASA VPN policy based on AD groups

Unable to Ping VPN ASA Firewall from Backend Server, SNMP Walk Works

L2 Trunk encryption

Resolved! Cisco FTD-Virtual

Active directory computer object created by FMC/FTD AD integration

Help with asa 5545 x config commands

IPsec session (Phase 2) hang. Cisco Secure Firewall (Firepower)

SnortML

Using ftd to block subdomains on the internet.

@cyber security course

Asa 5520

CSCwd11825 - FDM upgrade failure due to HTTPS cert expired

Unable to authorize access. FPR1010 FDM Fresh reset

Resolved! FMC 1000 to HA FMC 1600: Upgrade Strategy & CUFA to ISE-PIC Migration

Change Syslog Port Cisco FirePower Management Center

Drop packets on TLS flows after the "Client Hello" message

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Announcing the releae of Firewall Migration Tool Version 7.7.0.1

SNMP MIB oid to find the logical device information (FTD instances)

Cisco Firepower FTD with secure FMC : VXLAN

cisco secure firewall migration tool offline mode

FTD PAYG licensing in AWS to enable AES256 Encryption

FTD Reference Bandwidth

How to fix vulnerability CVE 2025-20197 thru 20201

Secure Client can no longer access servers in our Data Center