Hi All On ASA 5516 with 6.2.3.6 is there any limit on creating network object or network groups and assigning them to security policies? We need to add, to an existing block rule, more than 950 IP addresses ( as hosts) and then assign them to a poli...
Forum Posts
Resolved! ASA 5525 ASDM Stuck at 17%
Hello, i've tried every compination with these ASDM & ASA Versions: 105 -rwx 25629676 18:20:30 Oct 07 2019 asdm-752-153.bin106 -rwx 111034368 08:58:00 Oct 22 2018 asa983-11-smp-k8.bin107 -rwx 32738244 08:59:54 Oct 22 2018 asdm-792-152.bin108 -rwx 341...
Hi guys,I have FCM with 2 clusters of FPR (active-standby) you can see on the screen:I am not able to connect with SSH. I Tried connecting with SSH (putty) to all four IP addresses: (192.168.5.38, 192.168.5.34, 192.168.5.37, 192.168.5.33), but witho...
Hi,I have DOT1X authentication configured on all switch ports (Both data & voice VLAN). I also have Cisco IP phones.My requirement is: to allow Cisco IP phones without DOT1X authentication. I have tried using "authentication host-mode single-host", b...
How do I export this cert? I need to upload it onto cucm. thanksThis is a stand alone FTD. It's not on FMC.
How can I generate a csr request for a web certificate? I could not find where it is generated
Hi All,Can someone tell me why you cannot set up a NAT rule on the ASAs with the destination address being a FQDN?I want to allow some internal addresses to bypass our proxy to go to an external address and thought this would be the best way to do it...
Have an FTD1010 that's been factory reset (currently not registered with an FMC), can get to the FDM instead.Its currently running version 6.4 and I need to get to 7.3. Hence I have opted to use the reimage guide found here as it means I can go direc...
I'm trying to get FTD 7.1.0-61 (with FMC 7.1.0-61) configured in GNS3 (ver 2.2.37) but interfaces are down (no packets received). Ive set the interface status in Health policy to disabled. The outside interface is set to DHCP but not receiving an ip ...
Hello.My web session keeps expiring in one firepower I manage.When I connect to the firepower web, the session expires in 1~3 minutes irregularly.In some cases, you cannot log in because your session has expired.The browser session timeout is set to ...
Hello, I'm trying to deploy a FlexConfig for NetFlow export to my FTD, which is failing. I'm using FlowDestination text object override on my device because the interface name does not match the default "Inside." I would like to avoid creating copies...
Hello.I'm trying to understand what this ASA5525 is logging, and to where.May you please inform me what the below config lines mean?If the below config lines mean debugging is presently on, shouldn't the below config be mostly removed to stop stress ...
We have setup Syslog to remote Syslog servers under our Device Platform Settings. For some reason, we are not able to see logs on our syslog server that shows information like "TCP connection Allowed from Src_IP to Dest_IP on Access-Control Policy "...
Hi All,Need your suggestion on FTD URL categorization, We have an access policy for same destination but BitTorrent not allowed in same access rule. And If we check required URL that also not categorized under BitTorrent, if we check under FMC>analyt...
Hi All, I am looking for some advice on how to block some country's IP addresses on our ASA 5555 firewall. On firepower its quite easy we get the option of Geolocation but on the ASA I cant see a convenient way of doing this. Has anyone had any exper...
