Hey guys, I have configured AnyConnect VPN on my ASA to use Cisco DUO 2fa, Cisco ASA SSL VPN for Browser and AnyConnect.It is working alright, I am getting the push and am able to use VPN. While connect VPN I have a send password field and I have to ...
Forum Posts
Hi,We have a few 4100 series appliances (6.7) where we have 3 to 4 logical FTD devices. The FTDv devices are configured in HA pairs running 6.7, where primary is on one 4100 appliance and secondary is on another 4100 appliance. We ran into issue wher...
Hi,I have a FTD device in a Failover Cluster that I need to replace. Everything is managed by FMC. This was the primary node, so now I have the secondary node active. I will break the failover before installing the new node, but I want to understand ...
Resolved! FMC Feed through online csv file
Hi all So I can see on github that there are list from MS sentinel that contains a lot of ipes that are trying to gain access for log4j...The list gets updated all the time, but is there a way where I can make a security intelligence feed that keeps ...
I use FMC Malware Policy but I have found from Network File Trajectory time 2021-12-10 07:26:11 is malware block, but in 2021-12-10 07:26:13 change to cloud lookup.My FMC Malware Policy is what happened?? I search File Event show message : Retrosp...
Hello Gents, I am trying to add the 3DES/AES license to a pair of Cisco ASA firewalls running on top of FirePower 2120 boxes ( re-imaged), I managed to get the activation keys from Cisco however the command line to introduce the new keys is not avail...
delete me
Hello, I have been looking at SecureX and was wondering if it restarts the FMC or the FTD's when checked. I would think not as it should only care about the FMC and what it collects correct? I just don't want to have to put in an outage request to cl...
Hello experts, I have an issue with ping in my LAN network, I am unable to ping my LAN network from firewall to system and system to system access-list VLAN100_IN extended permit tcp any any eq wwwaccess-list VLAN100_IN extended permit tcp any any eq...
We have been configured site-to-site vpn connection rv320 and asa5508 on gns3 but reality it's not working how do we resolve this error? Please help us !Configured phase1crypto ikev1 policy 10authentication pre-shareencryption aes-256hash shagroup 2l...
Hi everyone,I have some questions about "SSL inspection".I have a couple of servers in my DMZ zone that they serve mostly HTTPS service to clients. HTTP and HTTPS traffic first come to "firepower" and then go through web application firewall "WAF".SS...
compliments of the season Cisco community.I want to grant permission (CLI) to any client outside, to access a tcp service on server within my LAN with IP 10.30.0.3I entered the instructions below but still can't access the service from outside. pleas...
Resolved! Simulate traffic in FMC
Hi, When using the ASDM its possible to simulate a traffic flow and it shows you all the rules it hits. Is this also possible in the FMC WebGUI ? Regards,M&Y
FTD 6.6.5 We've got a "Block" ACL based on source networks that's somehow being bypassed, but only for a single group of source networks in the ACL. Support tech couldn't find any explanation, and suggested we run a system support trace. The only pro...
BLUF: Will Cisco continue with the ASA version of firewalls or will they be phased out? Looking for information on the Cisco 1000 Series ASA Firewall. I am hearing that the ASA version will be phased out of the series as more customers move toward th...
