We have the following devices for our company VPNs:* Concentrator: Cisco Adaptive Security Appliance Software Version9.8(4)40,* Client: Cisco Anyconnect version 4.9.00086We have already implemented split tunneling with a couple of subnets that go thr...
Forum Posts
Resolved! FMC problem
We are using the physical Firepower with the FMC as a virtual server. Cisco Firepower 1140 Threat Defense (78) Version 7.1.0.1 We did a Firewall update in past and renewed the Certificate. Seems like it worked well, and our AnyConnect Clients can con...
Resolved! Firepower Management Center User Agent
Is the User Agent still an option to use in FMC version 7.2.0 ? I thought I read somewhere that it was being depreciated in favor of ISE but I really only need the user agent and hope CIsco hasn't done away with it.
my company is used the asa 5510 firewall, but the company is bought the firepower 1120. i can configuring this device with the device manager and the cli. i need help, on the asa 5510 i can show running configuration from the cli, but in the firepowe...
Guys I am having the strangest issue with all 3 FTD's where I assign 192.168.3.1 to port 1/1 within FMC. There is no subinterface etc it is a IP address assigned to the physical port. If i plug into an unmanaged switch I cannot ping 192.168.3.1 while...
Resolved! MERAKI MX AUTO-VPN
Hi everyone, I'm setting up a MERAKI mx85 for two sites and one of requirements if setting up site-to-site vpn connectivity on both sites. Do we need to have both MX to have static IP address as requirements for this to work? Regards,R
Hi We access network devices via ssh. I can see "PublicKey" in SecureCRT. Please see the below screenshot. My question is since it use PublicKey, does the private key get involved in the process? Is this PublicKey the same concept as OpenSSL? Thank...
Good morning Everyone.i am looking for documentation and coaching perhaps on how to implemnt DUO MFA for my Cisco 9k switches which are managed by DNAC today.i rougly have 400+ 9ks i need to implemnt this across.we initially configured a external rad...
Hi,I have a Cisco ASR 1001-X router running on IOS-XE version 3.16.02.S with Advanced Enterprise license. The platform has multiple BGP connections with hundreds of VLAN interfaces. I would like to restrict SSH and SNMP access on all the interfaces e...
Good evening, from a firewall perspective, which interface does the ASA consider an Anyconnect VPN client coming in on? Here is the situation, I have allowed restricted access from INSIDE to our DMZ based on source and destination IP addresses. ...
Resolved! c867 VAE Firmware Update.
I am currently using the FW 15.7(3)M1 at my c867 VAE-K9 router and I think no vulnerabilities have been discovered.Should I do a firmware update?
Hi Just have a situation need to reimage the FTD applicances into ASA mode, can I still use the TMC license purcasehed for FTD? or is there any solution to convert it? thanks
Hi,We have a requirement of providing a kind of shared service to one of the entity(having around 100-120 users) sitting in the same building.Now since we have to provide them all the infrastructure services( Data,voice, wireless etc). I need to know...
Hello everybody, a customer is working with a ASA (rel. 9.8(4)39) and AnyConnect 4.5. They have many LOCAL users and several AnyConnect profiles with Group URLs.At the moment every LOCAL user can use different Group URLs for login and so they get...
Resolved! FTD 2130 - Changing the Syslog Time zone
Hi, Our Firepower 2130 is sending Syslogs with Timestamps in UTC Time Zone and I can't find way how to change it. I configured in Platform settings/Time Syncronization that the FTD updates its Time from Management Center but when I do show ntp on F...
