We have a Cisco ASA providing remote access VPN services which also uses DUO for MFA. We want to achieve the following 2x things1. The VPN group policy should be assigned based on Active Directory group 2. For shell access the priviledge level shoul...
Forum Posts
Firepower is setup with ASA behind it. Need to setup IPSec between ASA and Outside/internet JuniperFW. I can see IKE and ISAKMP packets, but no ESP. Is this even possible:-Use FMC to traverse IPSEC for an internal ASAAny inherent policy in FMC that b...
Would like to know that Cisco codec plus is vulnerable to CVE-2022-2588/CVE-2022-2585/CVE-2022-2586 Linux Kernel LPE Flaw
Resolved! Where To Download ASDM-IDM Launcher
Am I missing something or is it impossible to find a download for this? I have a valid cisco support account & constantly download software all the time. Can some please guide me?
If the AGE of the arp entry increases does this mean the device is offline.In this exampe the age of 10.59.33.25 is 194 Minutes and increasing.DRWEXTRTR02#sh ip arp vrf OPTUS-SIPProtocol Address Age (min) Hardware Addr Type InterfaceInternet 10.59.33...
Hello,I am attempting to create an IPSEC site to site tunnel between two sites. When i attempt to ping a host in the CoLo from Dover (192.168.10.239 pinging 192.168.190.200), the tunnel establishes, and i see bytes rx and tx on the Dover end of the t...
Dear All,On our ASA(9.18), we are running OSPF and BGP, and are redistributing BGP routes into OSPF.We want the redistributed routes to be tagged with a custom route tag. However, on ASA there is no option to tag routes using set command under route-...
Dears,I have asa-5525x with Firepower services including a URL filtering license and I have the below issue:consider a website (xyz.com) with a couple of youtube videos embedded inside it, is it possible to allow only youtube videos that have been em...
Hi Folks, In a plan to upgrade my ASA, ASDM and FMC, below are the current versions Cisco ASA 5525: 9.12(4)37, ASDM Version: 7.13(1), FMC : 6.5.0 Looking for ASA-FMC compatibility matrix
Hi Team,How can i configure MAC Address to IP Address Binding on Cisco ASA FW? I am migrating Domain controller to Cisco FW, i have configured DHCP and DNS on it. Now I have 7 IPs which needs to be configured on MAC address on this FW.
Hi, We have problem with Teams when connecting in vpn . I would like to configure my vpn anyconnect to be split tunneling (exclude teams traffic only). I saw a few configuration suggestion on that some with Python script and some with dynamic exclu...
Hello!I'm using Arctic Wolf for security scanning, and they're telling me that port like 135 and 3389 are open. I have an externally accessible server with 1 to 1 NAT setup, then my ACLs only permit web traffic. When I do a packet capture, and try to...
The web server service running on this switch appears to create it's Access-Control-Allow-Origin response header based on the user-supplied Origin value. I am needing to include the “Vary: Origin” header to prevent caching. But I don't know where ca...
I am working trying to limit users to certain sites within a domain using manual url filtering.I have a rule that blocks discord.com which worksI do want users to be able to access certain channels within discord.source: internal networkdestination: ...
Hello Team, I have been through lots of Cisco FTD Docs and cannot find the answer, trying not to raise a TAC case for this if it can be avoided. Does anyone know if you can modify the SSH cipher on FTD by editing "/etc/ssh/sshd_config" on Cisco FTD 2...
