Hi TeamAny reason why I am being limited to directly add 100 IP addresses on the right side , as shown by red box, but at the same time if I create objects on left side and add them , i can put as much as i can, ? any logic in this or reasons for thi...
I have a number of FTD's within our infrastructure currently at version 6.6.1....I've upgraded our FMC to 6.7 without any issues. After upgrading to version 6.6.1 we were warned that when upgrading to v6.7 a number of hash, encryption algorithms and ...
Hi,I have vFMCs in a pri/standby mode that are managing FTDs on several 4100s and 2100 series Firepower pairs. I have SolarWinds for Network Configuration Backups. How do I make sure that FMCs and FTDs configs are backed up on SolarWinds?Is this same...
Hi all,I am new for Cisco and try to set a new ASA 5505 and switch 3560. I can make the internet work from my Comcast to ASA 5505 to my laptop with DHCP from ASA. However, my switch cannot get to the internet from ASA. From switch, I can ping the ip ...
Hello Team, I have a Cisco FPR-1010 running ASA software on it I am having trouble configuring SNMP to work with my SNMP collector neverthless I have all my Cisco ASA appliance working with same SNMP settings please let me know if there is something ...
DearsPlease reply me with your experienceif i m not on a public cloud and completely on premises setup then any organization would require a virtual firewall in ESXI host ?? i think it is not required becz lets assume the vm on the esxi host all are...
We have two cisco asa 5510's in a failover setup.I'd like to take the secondary/failover and make it the primary/active and do this for good..not just for testing. And of course make the other the new secondary/failover.What would be the best way of ...
I'm trying to understand this order of operation. Port 22 and 3389 are being permitted by this line in my ACL and affecting traffic from the Outside zone to Inside zone. I imagine there are others, but this is where I am testing at the moment. ...
The timeout setting for a VPN group is 1 minute.vpn-idle-timeout 1However, even after one minute, the VPN will never be disconnected.What configuration do need?
Hi,I read a few EoL notices regarding ASA5525:https://www.cisco.com/c/en/us/products/collateral/security/asa-firepower-services/eos-eol-notice-c51-743545.htmlhttps://www.cisco.com/c/en/us/products/collateral/security/asa-firepower-services/asa5525-55...
Let 's say we have Cisco DNS Advantage license for 100 users. Scenario 1: NO VA appliance is deployed. NO AD Integration .All DNS queries are forwared by Organisation DNS server to CISCO umbrella and there is PAT device at the edge. Querry is , how C...
I have an HA pair of FTD 2140 firewalls, running 7.0.1. They are managed by an FMC running 7.0.4. The firewall is running BGP with its upstream and downstream neighbors. I would like to enable BFD between the HA firewall and the upstream and downstre...
We are deploying 2110 FTD's for L2L connectivity and had a question on the best cabling setup. Our current Internet and DMZ switches are stacked which we are moving away from this setup. What would be the best cabling setup to remove any SPOF with tw...
I have an ASA 5555 running version 9.8 and ASDM 7.8(2). I am looking to see if anyone can point me to any firewall features on the ASA that resemble IDS functionality. Because I have zones enabled on the firewall, thread detection is disabled. Other ...
Added SSL inspection policy and it works as desired. The issue is that Chrome does not like the FMC cert and will not allow me to access any HTTPS sites because the sites are re-encrypted with my FMC Cert. Has anyone else encountered this issue? -W...
