Hi,I am trying to migrate ASA configuration to FTD for a customer and one thing I cannot find how to enable, is the command "capability lls" that are present in the ASA. Also it doesn’t seems to work to enable both "nsf cisco helper" and "nsf ietf h...
Forum Posts
How to configure symmetric NAT in ASA 5506X? use dynamic NAT in the list in ASABut which name is for symmetric NAT in NAT configuration in ASA?Symmetric NAT need TURN servers If hackers hack me , does it means he need to have virus or Trojan trigger ...
Hi everyone. Is there any way to backup a cluster of two FTD on Firepower 4140? As per Firepower Management Center Configuration Guide, Version 6.4 Backup is not supported for FTD: Clustered devices and container instances. So I was kind of wondering...
Hi All, Not sure if this is the correct part of the forum to ask or not, but my question is.... do SNMP traps work purely on events/status changes, or can a SNMP trap be sent periodically to report the current status of a particular interface? e.g. c...
Hi Guys, I cannot seem to find any guide anywhere but how do you change the 'admin' password NOT the registration password for the ASA SFR Module?
I have 2 outside connections to my 2130 and some static routing to point certain things in certain directions. My secondary outbound interface has all of my site to site tunnels on it. I have tried to move one device's tunnel to the primary outboun...
Hello,I am new to security track, i have been asked to setup lab and allow users from inside firewall to access internet. here is my lab setup PC -> switch 1 (layer2) -> (inside) ASA (outside) -> switch 2 (Layer2) -> Router does switch 2 port needs i...
hi, i tried to google but can only see how to kill or clear SSH or telnet session to an ASA. could someone tell me how to kill the console session? we got a OOB server that console to the ASA and got locked when i applied the AAA when via another SSH...
Hi, I have a pair ASA 5525-X with firepower services module in Active / Standby HA. Recently we found that the primary ASA randomly fails over to the secondary unit and shows the error "Module sfr , Application down "ASA Firepower version 6.2.0.2-5...
We have 2 ISP BGP peers (1.1.1.1, AS111; 2.2.2.2, AS222), ASA 5515-X (9.12.4.18), own public network (192.0.2.0/24, AS333).We need to have SSL VPN (and s2s too) be configured on this device, but on our IP-addresses, not ISP. Config be like:router bgp...
Resolved! ASA5525: Separate NAT for TCP and UDP?
When creating a NAT object, advanced settings asks you to specify TCP or UDP protocol. Does that mean you should create one NAT with private/public pair for UDP and one for TCP?
Hi All, We have some N3ks - on which we apply ACLs on a VLAN interface - and for the most part this works well. except: Sometimes (for a few hours, every few days) the http/s traffic is blocked. If we add a permit tcp any any rule to the beginning of...
We have an internal initiative to get external BGP up and running; however, we won't have the routers available until next FY. We're looking at using the FTDs to get a summary route from the peers, but I have some concerns. We recently tried to confi...
Hi volks, did someone used the 2 PoE-Ports at the Firepower 1010 with FTD 6.6 and FDM? I tryed to connect an AP1815I to Eth1/7. The AP gets stuck in a reboot cycle because he didnt get enough power via PoE (blinking amber-red-green then turning off)....
Hello there. Cisco FMC manages over 200 FTDs at Suncor. Is there a way i.e. commands or script to get the full list of chassis serial number of FTDs from FMC? Thanks.
