Hi,on this ASA-5525, It will be insightful to a troubleshoot if I simply remove the below global service policy, but I do not understand the negative consequences of this action. It seems to me this global policy is a security restriction, and thus n...
Forum Posts
Hello, I have configured cisco ASA anyconnect ssl vpn and it is able to access internal network, The problem is the ssl vpn client is unable to access the inside interface of the ASA for management purpose (ssh/http). Even though the following config...
I am looking for explenation/documentation what actually happens when i implement something like this : parameter-map type protocol-info example_allowserver name example.comserver name *.example.comserver name www.example.comclass-map type inspect ma...
Hello teams good day.I have a question. ¿Does anyone have the radius attributes of the Siemens device to add them to the ISE? I can't find the dictionaries on any websiteThank youI am attaching an example image from another vendor "mikrotik", which w...
Resolved! ASA 5516-x Maximum Thoroughput
Hi, We are considering increasing our provider bandwidth to 1Gbps at one of our locations, but I'm not sure if our ASA 5516-x can even process that much. More specifically, I'm receiving conflicting reports about how much bandwidth an ASA 5516-x can ...
is there a method or a feature that allows you to change the device(ASA/FTD) OS Fingerprint?
cisco firepower 1010 FTD version 6.6.1 (not register smart license)I config NAT on FTD yesterday ping test pass and I shutdown firepower.but today start firepower ping test again result ping fail.display CMD PC1 show request timeout.display CMD PC1 s...
For the Cisco 4145 Chassis, what is the correct command to see what the mac-address is on the physical interfaces of the chassis?Thx in advance.
hi,i'm going to separate internal/core and external/customer IPSec VPN into separate context, i.e. context A is for internal/core and context B for external/customer. both are using the same outside public ip address.can i use the same outside public...
Hi All,I'm doing some cleanup on an ASA5516-X and wondering if there is a way to delete a network-object from an object-group while that object group is configured in a NAT rule. Other posts on the same topic advise to delete the NAT rule then remove...
I made changes to the hostname after implementation and I changed it via the FMC and via the "configure network hostname" command on the FTD but when I try to add to SNMP manager, it cannot add because its showing the old hostname which is the same a...
Hello, We have a 4412x FTD device running version 7.2.1 and managed by a virtual FMC. We are using URL filtering for both a wireless guest network and for a school network. We are not doining any SSL decryption so the user will only get our custom bl...
Hello,Does someone here is able to tell me where is the log for the connection events in an FMC 1000?If not, is there is somewhere where I could find the size of the data we have in the connection events?I need to define a rule of thumb for how much ...
Hello everyone,I'm unable to ping the outside interface's public IP from the outside. I have ICMP inspection enabled as well as the ACL "icmp permit any outside." I can ping through the device without issue. Looking at the log, it is showing:- "ICMP ...
I am learning secure firewall but I do not need it reality. So I was wondering if I buy the vsecure firewall on amazon and pay as I go with it. Is it possible to take a snap shot for backup . so that I can tear down the AWS virtual environment and w...
