I have a Geo-Block up blocking several countries on a Fire Power 1140 and is working but for some reason it will start blocking server traffic to our VPN users or completely blocks VPN connections. This is a critical device for daily operations. So, ...
Forum Posts
Resolved! Need a help on Cisco IPSec Configuration
I am trying to do an exercise on the Cisco Packet Tracer which is: and the config steps are:I am just new at Computer Networks and Cisco, so I wanted to ask if I did the all configurations correct or I need to change something on my config? My Packet...
I am looking at an ASA 5505 ASA Ver 8.2 and anyconnect client is not being used. They have some 3rd party client that connects to port 500. However I am at a loss here as to how this was setup. I searched the cofig for VPNGP and output of command is ...
Resolved! Firewall Migration Tool error
Love the tool thus far but nothing is ever perfect so I hope to get some help here n there on some migration issues I come into. The one I have today is the attached screenshot. "Migration Unsuccessful!Error while pushing s2s vpn: Device interface do...
Resolved! Multi Context IPSec VPN limitations
Hello,We are looking to deploy mult-context IPSec lan to lan VPNs on ASA 9.x now that the functionality is available and I'm trying to understand if there are limitations to the number of tunnels that can be deployed per context? The below link may ...
Resolved! Weird NAT issue on DMZ
We have an issue where if we do not use interface as source translated packet, it will not route to the inside interface. It is the translation for the public to private IP to the DMZ from outside. Outside to DMZ, no issues, but when the server tries...
Resolved! Anyconnect for Cisco ASA 5505 and 5506
Hello,We have 2 Asa devices in the network.We want to configure the anyconnect SSL vpn for remote users (5-10).I read the data sheet and found that the base license with the devices only have 2 sessions.Do I need to buy additional license to be able ...
Dear All, we've installed two 2130 FTDs in HA, managed with FMCv, we've configured a rule to allow some users with gmail and ooutlook.com email providers. on the URL tab we've listed google.com and outlook.com. users get the Gmail home page but can...
Resolved! ASA VPN packages
I found these packages on older ASA's that I am trying to replace. I am not sure which packages are even being used by remote users. Do you think someone just added these packages to just cover all possibilities or they actually using these still to ...
Dear All, we've installed two 2130 FTDs in HA, managed with FMCv, we've configured a rule to allow traffic from outlook clients to exchange server 2010 which is installed behind the firewall. below are ports we've included but the outlook shows Dis...
Hello, I have two FTD 2110 in high availability.I have a script that needs to log in to the ssh of the FTD. I would like to ask if there is a way the login process to use a pair of public/private key instead of username and password. Thanks and reg...
Hi all; According to Cisco's technical documentation, one of the steps to change the FMC access interface from management to data is executing the following command: configure network {ipv4 | ipv6} manual ip_address netmask data-interfaces My questio...
Resolved! Access list affect
I have the following concerns regarding access lists on ASA:We've permitted the computer below to access the file server and from the computer, we've opened a doc file and made some changes.Computer (192.168.1.10) > ASA > File Server (192.168.2.3)whi...
Hello Cisco Community, I need some experience regarding FPR 4110. We have a scenario in which we have RMA the FPR 4110. New FPR comes without SSD drive installed on it. I need to initialize FTD software but due to unavailability of SSD on New FPR, Fi...
We've recently implemented WhatsUP Gold using SNMP v3 on our network and as the FW engineer I've been asked if we can add the firewalls to the display by configuring the FMC v7.0. I've attempted it, but when building the user it wants me to enter he...
