Is best practice still to either tag nothing or tag everything on an interface on the ASA? As in, either leave it as an untagged and then pick the appropriate vlan on the downstream switch: GigabitEthernet0/2nameif insidesecurity-level 100ip address...
Dear sir, I need to upgrade openssh on cisco fire linux os, because founded vulnerability.but yum update, apt-get command is not heard.please inform me that how to upgrade openssh. My fmc os and openssh version as below. thanks,
Software Version 5.4.1.6 (build 40)OS Sourcefire Linux OS 5.4.0 (build126) Hello! I have a problem! I hope for your help! When a try to apply settings to Sensor in FireSight - i have error - "Unable to connect to DB". FireSight and FirePower see e...
adding route into the asa
Have private IP address on FTD Management.. NAT is though a Cisco 5510. The FTD is managed fine, but when trying to upgrade, the readiness check fails with Status Log:Readiness Check To 192.168.77.112 Failure, Got ExceptionTCPdump and 5510 log sho...
Hello All you Cisco Fans,May i please know which CISCO Sandbox lab should i select to reserve if i want to practice Firewall ASA commands.Thanks in advance. Piyush Verma
Hello Would you please help me for basic question?from PC2 I can not ping to pc1 or pc3. confirm 3 PC had correct IP and gateway.if I put a router in pc 1 and pc3 then enable icmp debug, icmp can receive and had been reply.So the question is why icmp...
Hello I had a very similar post but without the knowledge of it being an MTU issue so I wanted to post something more specific. My FPR is set for PPPoE w/ a WAN MTU 1492 as instructed, and have always done for PPPoE. My FPR software is 7.1.0 and my F...
I am having some major throughput issues with my WAN (Internet access).My original software was 7.0.1, I then upgraded to 7.1.0-90 and same thing.My FPR is configured in PPPoEI have 0 configuration as in aside from default getting on the internet (so...
Hi, I'm trying to assist a neighboring company.They have Threat-detection scanning-threat SHUN enabled on their ASA devices.With this enabled they are no longer able to use scanning tools like ACAS to check outside devices they monitor.Currently I on...
Hello, I have a site-site VPN between a Cisco ASA & a non-cisco device. The 'sites' are sensors, which only have a couple of IPs so they're on /29 networks. I needed to add more sites, so copied the original VPN settings using the ASDM. The sites...
Hi All, I would like to know ASA can configure aaa-server group for backup if aaa-server primary down ? as configuration below. If Radius-1 group fail can i configure automatic to switchover to Raidius-2 group.?aaa-server Radius-1 protocol radiusaaa-...
Hi all, Currently using an ASA pair for internet connectivity. I have 2 point to point circuits into 2 different ISP's. I have each configured on separate interfaces on the ASA. Which creates my first problem that I have multiple outside interfaces. ...
On my ASA I have a network interface on a production VLAN, and that network interface has an ACL where the only rules is a "access-list ... permit ip any any" (because of how was implemented in the past).Now, for some sort of compliance, I have to re...
Hi, I have developed a Python script that uses a textfile (IP addresses 2,500+) to create network objects and add those objects to a network object group. When I use the script it is very slow, takes several seconds for an object te be created and ad...
