We are starting to configure new firewalls to replace our old 5516x. I'm trying to find the easiest way to accomplish this. My plan was going to migrate ACL/Rules to FMC from the 5516x (Done) and then hook up the new firewalls so FMC can at least tal...
I have just upgraded our FMC and FTD to v6.7.... One of the new features within v6.7 is that standard interfaces can be configured to be the management interface. This is perfect for remote sites where the outside interface can be configured as the m...
Hello all,I have a vpn between my branch and main office. From the branch I can reach the main office and the devices there.I would like the branch site to hit the main sites asa and then use it for the internet breakout. I just want it for a few int...
Hi everyone, We have an FMC set up that is managing a number of FTD devices. We currently have alerts set up to send emails when intrusion events occur. Emails are generated using the Impact Flag settings and when specific rules are fired (via the In...
Hi AllAfter copiedAccessing tftp://1xxxxx/anyconnect-win-4.10.00093-webdeploy-k9.pkg...!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!Writing file disk0:/anyconnect-win-4.10.00093-webdeploy-k9.pkg...!!!!!!!!!!!!!!!!!!!...
I am getting this message when using the Cisco CLI Analyzer on my ASA5505. Cisco ASA Unicast Reverse Path Forwarding (uRPF) Bypass Vulnerability- CSCuv60724. Should I remove these commands on the outside interface? What about inside?
Community,I have 4 total domains, 1 Global Domain and 3 Leaf domains under the Global. I have external authentication configured in the Global Domain on the FMC via LDAP integration and it is working great. However, I have 2 new users who I only want...
Hello Experts @Marvin Rhoads @Rob @Sheraz.Salim @balaji.bandi @Mohammed al Baqari @Richard Burts Whenever I configure IPsec tunnels, I checked Phase DH group and encryptions (DES/AES/SHA etc) and in Phase 2 select the local and remote subnets...
Hello everybody,I have just setup my first FMC (6.6.1) for a ASA Failover Pair (9.8(2)20)with Firepower modules (6.6.1).At the moment still no traffic will be handled by the module (neither"sfr fail-open" nor " sfr fail-open monitor-only" is currentl...
Cisco ASA with FirePOWER Services brings distinctive threat-focused next-generation security services to the Cisco ASA 5500-X Series Next-Generation Firewalls and Cisco ASA 5585-X Adaptive Security Appliance firewall products. Cisco ASA is the world'...
I have a pair of ASA 5525-X that I want to convert to FTD image. I built a new FMCv 6.6 to manage them.I converted the ASA firepower classic licenses to the smart license already. I also registered the new FMC to the license portal...But the license ...
HelloWe have a vendor asking us to renew a Cisco Asa 5516X license So in the Asa we were given that the license is for life. can someone explain me please
Hello Folks! I'm using one anyconnect VPN URL to different access and it is working, but the users have to type the URL every time that they will connect to the VPN.Example: I have department X,Y and Z, when the user try to connect, the ISE will see ...
Hello Guys I have ASA working with having CRC errors on LAN interface and Cisco TAC said move the port to another. To assign the same IP to another available interface, I have to delete the config on current Interface which will also delete NAT or...
Hi, I am using a Cisco FP1010 running ASA software. The ASA software on the 1010 runs on top of fxos.I installed 3 software bundles 9.14(1), 9.14(2) and 9.15(1) (using the downgrade disk1:/<image> disk1:/<config>)How can I manage these images?a) How...
