One of our customer's Cisco ASA firewall was found vulnerable to "Diffie-Hellman Ephemeral Key Exchange DoS Vulnerability (SSH,D(HE)ater)" following a vulnerability scan.The CVE could either be CVE-2002-20001 or, most likely, CVE-2022-40735.The firmw...
Hello, Comparing with ASA the procedure for install or renew certificates on FMC is quite diferent. What would be the formal procedure for install a remote vpn certificate over 2 FTD via FMC? The same certificate can be applied to both FTD? Thanks....
Hi -I have a Cisco AIR-CAP-2602i-A-K9 unit that needs the security update as outlined in Cisco security advisory cisco-sa-20171016-wpaURL is here: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpaThis...
We are discussing the best way to place PCs onto their desired VLAN. It has been offered that we make all switchports trunks and do VLAN tagging from the PC NICs. How dangerous is this from the perspective that all switchports would be trunks?
Hello, As you can see in the title, I have to migrate a (huge) configuration from FWSM OS v4.1 to ASA OS v9.6.1 on Firepower 4100. I found the FWSM to ASA-SM migration tool - which translates the configuration to ASA-SM OS v8.5 - here: http://www.c...
Hi, I'm having a lab here which to design and create for a Clinic Network Environment that having access from Internal Network to External Network. When come to set for my Wi-Fi for Visitor Access-Points I was confusing above the ACL which I need to ...
Dear Community,We have HQ Site & 2 remote offices Site-A & Site-B. All 3 site are connected within MPLS managed cloud. We are seeing the Connection loops of the internal LAN subnets of Site-A & B on the outside interface of HQ firewall(Cisco 5525-X)...
I'm trying to connect to the FTP server, but it gives me "connect failed" How to fix this problem?
Hello All, We are installing an infra-considering log collector server and analyzers for one of our customer's DC and DR locations. The scenario is Customer is going to push/inject logs from their side on UTM_3200 FW to our end Dell_S4128T-ON L3 swit...
Hi, Have an ASAv in Azure thats running with 4 interfaces and the public IP on the management interface.Trying to setup a routebased VPN to an on-premise FTD.Have look to all settings for the tunnel multiple times, VPN connects but get disconnected i...
Hi All,We are facing an issue, wherein ASA is not matching one of the rule , even though we have mentioned correct source , destination and service port. In ASDM packet tracer, it shows traffic is instead matching the implicit deny rule. Packet is be...
Team Thank you all for your support. Here I need your quick help to solve the upgrade issue. I need to upgrade the FPR4K-SM-12 to the latest release but so far I have no expertise on this FPR4K-SM-12 product. Can anyone support me with your exper...
I have FTD 1010 without center interface basically not connected to management Center interface just locally - I have configured the anyconnect and working perfectly in AAA authentication. I need to switch to certificate authentication without having...
I am attempting to install a FMC virtual appliance (Cisco_Firepower_Mgmt_Center_Virtual_KVM-7.0.5-72.qcow2) on my Redhat 8 computer. When I run my installation script to configure the VM and boot I get a "LILO Keytable read/checksum error" immediat...
Hello guys!I have had multiple attempts on establishing a L2L IPsec tunnel using certs that I installed on both ASA firewalls using NDES SCEP from a Windows Server 2019 AD CS VM. The certs are RSA 2048 based with SHA 512 signature. I tried both IKEv1...
