Network Security

Cisco ASA - Need to log allowed traffic

Hello Everyone,I have a quick question that will likely be a no brainer for most of you. I have a Cisco ASA that needs to Log all allowed traffic to a logging host. There are currently 3 logging hosts on the Configured and I would prefer to only send...

Monitoring ASDM ASA

Hello,On the asa, with ASDM, in the monitoring, I only see the requests in deny, I do not see the authorized ones.To debug a problem, I would like to be able to see all request, deny and allowed.#sh run logginglogging enablelogging timestampno loggin...

Base Policy Inheritance what am I doing wrong here???

I seem to be doing something wrong with inheritance settings based off parent ACP. In the attached screenshots you can see what I am trying to do is establish mandatory Geo and URL block rules for all sub FTD policies to inherit. However it appears w...

Resolved! Configure external access

If I have a customer who co-locates on my network with a couple of servers and I configure a subnet, what's the best way to allow them access via teamviewer or similar just to their particular servers and no other devices on my network?So, it would l...

Multiple health warnings The user interface daemon exited 5 time(s)

We are getting the following warning - ModuleProcess Status: The user interface daemon exited 5 time(s) and can't seem to find a solution listed anywhere

Resolved! How to route VLANs on Firepower 1010

OK for the life of me, I cannot figure out how to route VLANs so that they have Internet access. Whether I choose Access or Trunk, I simply cannot get it to work. Online searches turned up absolutely nothing, not even the Cisco documentation could ...

How can i bypass routing protocol traffic (BGP, OSPF) in Firepower

Can Firepower identify traffics for routing protocol such as BGP and OSPF? I want to bypass BGP and OSPF traffics to boost my firepower performance. Thank you.

FMC AMP - .top , .win , .dns , .null - how to overall 'allow' or not

Good day allwe have a number of FMC-AMP alerts that trigger from these other 'new-standard' domain suffix typesso FMC rules by default flag these domains as IOC , but various TalosIntelligence review and Googling seem to show as 'neutral'.top .win ...

Resolved! Firepower stuck during install

Hi,I wanted to install asasfr-sys-7.0.4-55. on PID: ASA5516system install ftp://10.20.210.5/asasfr-sys-7.0.4-55.pkgThe install process reached 77% and then got stucked. asasfr-sys-7.0.4-55 77%[+++++=========> ] 966.78M --.-KB/s eta 17m 58s I've then ...

Snort2 Problems with FTD v7.0.1 and v7.1

Is anyone else having issues with v7.0.1 & Snort3 or Snort2 ? I'm posting this here as Cisco seem unable or unwilling to fix this issue. I upgraded 2 new HA Pairs of 2140's to v7.0.1 as the current Gold Star release with Snort3 enabled. 2 weeks into...

Resolved! FMC problem on GEODB update

I am on FMC 7.0.4Geolocation update has problem with installing Cisco_Firepower_GEODB_Update-2022-09-12-101.sh.REL.tarI Update geolocation in updates panel and tasks show me installation was successful. but Running geolocation update version: NoneT...

Resolved! Adding Cisco FMC with already configured Cisco Firepower Firewall

Hi Guys, I have had received Cisco firepower firewall and we have installed it as HA a month ago..now we have received the Cisco FMC can anyone help me or suggest how to integrate FMC with already configured firewall. Integrating now will the firewal...

Internet Access through Remote Access VPN (AnyConnect) for clients not working

Hi, I am looking for some assistance with configuring/troubleshooting our Remote Access VPN settings in part of access Internet through VPN connection. We use Cisco 5516-x with Firepower Management Center. We already configured two connection profil...

Cisco 1010 FTD How to Allow ICMP and DNS resolution for Cisco.com

Question:For the Cisco 1010 FTD utilizing the FDM, what is the process to Allow ICMP and DNS resolution for Cisco.com on the Outside interface? This is related to the workaround for Cisco Bug: CSCvz32452.Thanks in advance,G

Resolved! Licensing for ASA with FTD Image

Hi. Converting some ASA 5500-X appliances to the consolidated FTD image and found plenty of resource for that. What I can't find is licensing/subscription info for ASA w/FTD image. What SKUs are associated with Threat Protection, AMP, URL, etc. for A...

Network Security

Forum Posts

Cisco ASA - Need to log allowed traffic

Monitoring ASDM ASA

Base Policy Inheritance what am I doing wrong here???

Resolved! Configure external access

Multiple health warnings The user interface daemon exited 5 time(s)

Resolved! How to route VLANs on Firepower 1010

How can i bypass routing protocol traffic (BGP, OSPF) in Firepower

FMC AMP - .top , .win , .dns , .null - how to overall 'allow' or not

Resolved! Firepower stuck during install

Snort2 Problems with FTD v7.0.1 and v7.1

Resolved! FMC problem on GEODB update

Resolved! Adding Cisco FMC with already configured Cisco Firepower Firewall

Internet Access through Remote Access VPN (AnyConnect) for clients not working

Cisco 1010 FTD How to Allow ICMP and DNS resolution for Cisco.com

Resolved! Licensing for ASA with FTD Image

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Cisco Research Study! Take a survey for a chance to win $50 gift card

What's the ideal way to implement app-based 2FA for admin login for AS

Snort and alert modes.

Firepower 2110 platform to application in HA with minimum downtime.

FMC / FTD 7.4 / 7.3 users ,what other options do you also use ?

Cisco Firepower 1010e unable connect to internet

Redeploy FDM HA-FTD into FMC

Moving FTD

Packet Tracer 8.2.2.0400 compatability issues???

Found CVE-2018-0101 on ASA 9.12.4.67 which is released 2024