We switched (pure routing changes) from a pair of ASA5585 to FP4115 v7.0.2 w/ Snort 3, everything was running fine and then all of sudden nothing can pass through FTD. FTD syslog is normal, ASP drop is normal.We do find that the Snort has been restar...
Forum Posts
Resolved! Only allow subnet to internet
Hi all, hoping to get your guidance here... hopefully, i am in the correct forum.how can i build an ACL to only allow a subnet to internet and no where else within the network?i have a VLAN xxx that i would like to deny access to everywhere and only ...
I have registered 3 FTD's thus far to FMC 7. We ordered an additional FTD that is not contract associated and when I try to register to the FMC all I get is a "Detected registration type supported by device" message and it never registers. I can't op...
Hello,I have several problems with Cisco Threat Intelligence. I want to block for example several ASN. I found their IP prefixes but sometimes Threat Intelligence doesn't block all IP prefixes in this IP scope so I manually blocked them. Is there any...
Hi All,I have a FPR1010-ASA-K9 which I bought new for my home office to replace a trusty old ASA5505 which served me for many years and I only decided to upgrade as I could finally get more then 100Mb/s internet. Since I have had this device it has a...
Problem: none of my machines in INSIDE interface is able to access internet. I am not able to ping 8.8.8.8 inside interface. What am I missing?ciscoasa# show running-config: SavedASA Version 9.18(1)!service-module 0 keepalive-timeout 4service-module ...
Good morning, I have two FTP 2110s in a HA pair managed by FMC. I am using the KVM version of the virtual FMC software. My upgrade from 6.6.5.2 to 7.0.4 failed (although the Readiness Check ran successfully), the VM became unresponsive. When I restor...
Hi all,we are running asr 1006 for cgnat and pilicing asi ISG (broadband)Authorisation is done via radius that is connected with our crm. (subscriber session authorisation)But last time we are receiving thousands of authorisation requests from 1-2 ma...
Hello, We need to migrate an ASA 5585-X to a FTD with about 1000 AnyConnect users. Authentication is done with both client certificates and Azure MFA. I am looking for some help with the steps required for doing this. I am guessing that I need to ins...
Connection timeout exception while trying to connect from encore to FMC server( command: ./encore.sh test). can you please let us know if any changes to make in estreamer.conf
Resolved! Certificate Import Issues
I cannot seem to get a 3rd party wildcard certificate imported manually or using PKCS12 format for SAN names. I have generated a CSR using openssl based on the following and I can get the CA & ID in without error with PKCS12 but the SAN names do not ...
Hello,I am reviewing the details for the CVE-2022-20715 notice, at:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-dos-tL4uA4AAWe are using an ASA with Firepower Services, v6.7.0.3. About 3/4 of the way down the...
HelloWe are using Netography for NetFlow and we cannot find packets with the sync flag during queries, such as:ip == 10.40.32.67 AND ip == 10.67.51.215 and tcpflags.ack == true Removing "tcpflags.ack == true" does shield results but all results have ...
I am unable to test the encore CLI installation. I have python3.8 in my ubuntu system and still get the below error that python 2.7 is not available.
Hello all,I have got an error like this : Site A - VPN Tunnel between FW/OUT/x.x.x.x/0.0.0.0 and Extranet Device/x.x.x.x/LAN-B is inactive due to Peer Address Changed.but the connection VPN is up as normal!Have you ever meet this issue please help to...
