Hello, I have problem when I try configure Radius server (RSA SecureID).After I configured using the guide:RADIUS with AM Configuration - Cisco ASA RSA Ready SecurID Access Implementation Guide - SecurID Community - 559239 I made a test using wrong c...
Forum Posts
I am currently trying to diagnose an issue we are seeing where the time shown in our FTD HA pair is differing from the time listed in Lina, in some cases up to an hour difference. Below is an example (FTD is showing the correct time, Lina is incorre...
Hi, I'm configuring some filtering rules in a firepower and it's not filtering my traffic. I really don't know if it's because of a license issue or I have some bad configuration. This is a lab that I am doing with an IOS that I downloaded from the C...
HI folks,from external IP 1.1.1.1 (DNS name alice.bob, asa iface outside) portforward 80/443 tcp to internal webserver IP 10.10.10.10/24 (asa iface inside 10.10.10.1). All work properly. Now , how can I enable conn from IP 10.10.10.100/24 on to http...
Hi All, can someone help me figured out how to publish FTP directory/server to my outside interface using FMC. I have FTD 7.0.1.1 and FMC 7.0.1.1?
Hi All, We are upgrading Cisco ASA device 5512 and 5525 in our environment due to compliance audit. Could anyone confirm what is the most stable and recommended version as of today 24/06/2022. RegardsAbi
I'm looking at an issue with some FMC managed FPR 4115's in HA pairs, all running 7.0.1.1. The FMC is also managing other FPR 4115's & 4112s. The FPR 4115's currently have just an inside & an outside interface (port-channels). The layer-3 interface...
I cannot ping from my host192.168.5.80 that is on the same subnet to the internal zone interface of the FTD 192.168.5.1 that is also addressed on the same subnet. I do not see my system in the FTD arp table. When SSH'd into the FTD interfaces say up...
Hi, We have a small office, about 20 clients on LAN.I need to allow outbound (internet) traffic from:Some (Group A / Guest PCs) clients to few websites / IP addresses only.Some (Group B) clients to all outbound traffic (unrestricted access to interne...
I have a Cisco Asa 5506 and two interfaces ethernet, the domain https://xxxx.com.br is opening with the ip 186.xxx of the first interface, i i need it to open with the ip 177.xxx of the second interface. I have acl and nat created for domain.
Greetings my friends, I have 3 Cisco firepowers Model : Cisco Firepower 1150 Threat Defense Software: 7.1.0-90 In one of them i configured nearly 50 policies and i want to replicate the same policies and objects to the other two, is there an easy...
Dear sir, I want to collect the audit log of fmc to syslog. It is set as follows, but logs other than audit logs are being collected as below.And i don't want see this logs. Mar 22 01:25:46 firepower sudo: www : TTY=unknown ; PWD=/usr/local/sf/htdoc...
Hi Guys, A bit new in public cloud setup. I just found out that the HA setup of ASA in Azure is not the same as the physical ASA. I have 2x ASA that will be running in HA (active/standby) and these ASA will be my internal firewall. Do I still need to...
Hello Dears I have cisco ISE joined to Active Directory (AD), i need to make switch authentication using groups and users in AD through the ISE device , could anyone help me with this regard Bests
I have ASA 5505 tunnel S2S using PFS group 1. For reasons of migration to Firepower 6.6.5 I need to have this set to none. What do I need to do so that the ASA to ASA tunnel has no PFS set?
