Hi recently we got an auditor requesting that we change the self-signed SSL on a cisco C1111-8P running IOS XE Version 17.3.4a because the SSL chain has been signed with a weak hash, in this case SHA-1. The following certificates were part of the cer...
Forum Posts
Hello All,I'm trying to configure a rule on ASA from a list of URLs to private IPs, the config I have is below: dns domain-lookup outsidedns server-group DefaultDNS name-server 8.8.8.8object network private_ips range 10.0.0.0 10.0.0.20object network ...
I was looking everywhere for this Cisco Live Presentation...is it possible to share it?, I need this so bad!! Thanks Folks
I'm trying to login into my ASA 5520 ASDM IDM luncher, but when I put the ip address of the ASA, the username and the password into the ASDM launcher I'm getting "unable to launch device manager from 192.168.x.x.can anyone help. I have read through t...
Hey Guys I am replacing Firewall ASA NAT with Firepower based FTD can someone explain 1) In the below Auto NAT rule I cannot create a Duplicate rule to allow Destination Interface Backup. It will complain in Firepower that duplicate source cannot be ...
Working on a FlexConfig for EIGRP, have managed to work my way through most of the configuration.Still having issues with a couple commands....1. passive-interface $outside2. distribute-list $acl outwhen i try and deploy, the failure log always shows...
Resolved! Problem Agent SourceFire
Hi,i'm trying to configure AD agent, but always return the following error appears: I checked LOGs of agent, the follow message appears: "26/09/2015 20:48:23","debug","[0001] - Error connecting to 192.168.0.15: System.Management.ManagementException: ...
Assume these are applied to my Gig0/0.98 svi on my router for wireless devices.Interpret my acls! What is going on there? Am I missing anything?Make recommendations for improving these acls.How would I configure on a router?I have uploaded notes an...
I have existing FMCs. I have a requirement to build new FMCv after current devices retire. What is the best method for sizing for future vFMCs. Basically I need to know aside from managed devices what logs/events/storage/connections I have to look at...
Hello, Can someone please advise if it is possible to configure ECMP static routes on FDM v6+? We can see on Cisco's config guide for the device manager that we can have up to 8 equal cost static routes per interface, however we are hitting an error ...
Resolved! About ISE Repository Settings
I am trying to change the password of a user in the ISE repository automatically.I am trying to change the password from the CLI as follows, but it is not reflected in the GUI after setting.ise/admin# configure terminalEnter configuration commands, o...
Hi Everyone. I'm trying to set up active authentication for our office zone, it works with android and windows operating systems, both of them request interaction from the users. Apple devices don't recognize the need for authentication, they just sa...
I see in the intrusion policy something called edge phoenix as a choice but cant find any good documentation explaining about it and how to use it.
Hi all,I won't bore you with the full story, but I accidentally deleted a policy from our FMC (Devices > VPN > Remote Access)I have not Deployed it, so I'm assuming that the policy is still in place on the Firewall itself.However, I do not know how t...
Replacing a customer's enterprise ASA with FP Services firewall with a new 2130 FTD. Current FW configured to allow SSL/AnyConnect traffic inbound from Outside interface to pass through to an internal ASA Headend. This has been working fine for years...
