We have Site to Site VPN setup between few servers to a vendor. However seems all traffic including these servers internet destined traffic is also passing through the S2S VPN. How should I exempt internet traffic from S2S VPN
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,510) -
Cisco Bugs
(31) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Management Center (FMC)
(2) -
Cisco Secure Firewall Threat Defense (FTD)
(1) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(318) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(90) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,553) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,769) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hi All, Need to configure below password policy on my live Cisco Asa. Need to know will i lose the accessibility of my device anyhow after configuring the password policy. Also what are the precaution i should take before executing the command • Step...
We setup our FMC (6.4) to be a Pxgrid subscriber to Cisco ISE. ISE has several agents inastalled to retrieve user-to-ip mappings. I can't seem to find any information about how often:1/ ISE pushes user to ip mappings to the FMC2/ How does an FTD retr...
Resolved! VPN 2nd Profile Setup
Hello Experts @Rob Ingram @balaji.bandi I currently got AnyConnect VPN setup which is mapped through DNS to our Public Domain and its working fine. I want to setup another AnyConnect VPN which will be mapped through DNS to other Public Domain. I wa...
I’m looking for assistance with a rule and NAT policy Attached are the ports the phone company needs forwarded. I have the static IP of their system they are testing from and a user’s home static IP. Do you have an example of how the rules should be ...
Hi ALL Any option to enable stun protocol inspection for specific rules only in FTD2110If not do we need to enable it in global policy ... what are supportive commands to enable this protocol This is what we see atm > show service-policy inspect stun...
Hello, Exploring port-channel configuration on the firewall for redundancy but to my surprise, it not supported on FTD running version 6.3.0-80. require FMC to do it.https://www.cisco.com/c/en/us/td/docs/security/firepower/630/fdm/fptd-fdm-config-gui...
Hello, I have a customer that has a few ASA5510 in their environment. I realize these were end of support back in 2018, and have also read that the last software version supported on the platform was 9.1.x. Can anyone point me to information about ...
Resolved! Firepower 2100 boot directly to Rommon
I have a pair of Cisco 2100 series firepower devices that I am configuring for deployment at two separate locations. Currently when powered on, they go into rommon, without any prompt from me. Once I type the boot command they will complete their boo...
Hey everyone,I'm running into some issues with my testing and I'm hoping someone can assist me with this as I'm a little lost.First problem I've come across. I'm browsing the security intelligence feed that's in var/sf/iprep_download/Sourcefire_intel...
my post marked as spam i dont know whyi am doing a lab with packet tracer and i cant reach inside network to dmz asa config hostname ciscoasanames!interface GigabitEthernet1/1nameif dmzsecurity-level 50ip address 172.19.3.1 255.255.255.252!interface...
Hi Teams, Firepower have URL filtering function.I have some questions about this.Q1) Firepower support URL restrict(filtering) option without Category license(In ACP rule). What is difference this URL restrict and URL filtering(use C License). Q2) As...
I have 55 users connect to two switches each switch has two cables each one for a Different FW one FW for VPN and one For Internet, ( each one also BKP for other ) each FW has one Cables to Provider other Site has one FW only now : between Switches a...
Hello guys, I am following an online course with FTD and FMC. when I try to add my FTD to FMC I get en errorCould not establish connection with Device Possible reasons could be:- - Time on FMC and Device are not in sync. Make sure NTP is configured ...
Resolved! Cannot ping external DNS servers?
Hello All, I cannot ping any external DNS servers like google (8.8.8.8) or comcast (75.75.75.75) or cloudflare (9.9.9.9 or 1.1.1.1) from a PC (192.168.1.5) on the inside interface of Cisco ASA 5506?I have tried packet tracer and it states its allowe...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 10 | |
| 7 | |
| 5 | |
| 2 | |
| 1 |
