Hello! Im trying to configure macsec conections beetwen two C9300L-24T-4X , but when i try to use "sap pmk" command there is a message "% Unrecognized command" appears. How can i enable macsec functions?
Forum Posts
Resolved! How to Setup ISE CIMC
I booted the ISE and press F8 to setup CIMC basic configuration like below. IP(Basic)IPv4 [×]DCHP enabled: []CIMC IP: 10.10.10.100Subnet: 255.255.255.0Gateway: 10.10.10.254Pref DNS Server: 0.0.0.0 VLAN (Advanced)VLAN enabled: [×]VLAN ID : 10Priority:...
Resolved! Using wildcard in URL filtering
hi, How can i block all connections to *.microsoft.com (for example)? Can i use custom URL object *.microsoft.com or firepower doesnt support wildcards?
Hi, i have a 5506-x at Site B connecting to a 5515 at Site A via a site-to-site VPN tunnel. there is only the one Domain Controller at Site A which i'm trying to setup LDAP authentication from Site B for Anyconnect VPN users. if i setup authenti...
Resolved! New Routed Subnet on Cisco ASA
I have a new Cisco firewall which has version 9.8(2) software, yesterday our ISP provided a secondary routed subnet /29 this is routed to the firewalls /30 IP Address. It's not a secondary subnet with a new gateway etc it's just a routed subnet strai...
Resolved! Multiple WAN subnets on ASA 5516
We are upgrading our ISP link to a VRRP connection and in doing so they needed two of our public IP addresses. Due to this change they have provided two public subnets that they are providing via one handoff. My question is how do I set this up on ...
Currently working on a FDM on a 1010 that has content filtering w/ a few categories set to block (is there a way to just do monitoring like you can on an FMC by creating an allow policy and reviewing destinations?) and the rule has logging enabled fo...
Hello All, I am trying to see if there is a way to convert the config file from a ASA from a text file to a csv file? Thanks in advance! Replies rated
I need to upgrade my fmc from 6.4 to 6.6.4 , can i do it during production? will the upgrade affect the managed devices operation or configuration?
Hi Cisco community, Just wondering if anyone here experienced an ASA5525-X running FTD image being removed in FMC for some reason? I have ran the command "show managers" from the CLI and it says "No managers configured". No changes on it but I'm curi...
Hello everybody,our customer could not access his ASA5505 running 9.1(7)32(suggested release) using the ASDM.I could also not access the ASA by the ASDM because it hangs atloading at 17% (see attached screen dump).When I click away the window the fie...
I tried introducing machine authentication function on ISE in order or separate authorization policy each for the person whose pc name is registered in AD and not. I know that we can use the attribute "Wasmachineauthorized" to realize my wish. Howev...
Hello, I will be setting up vFMC 7.0 for the first time to configure my ASA 5555-X reimaged with FTD 6.6.5.I will eventually have a dedicated VPS for the FMC. However, at this stage I'm looking for a temporary setup that will allow me to get started ...
Hi Please see the below authentication session. For each Authentication rule under Authentication Policy, there are three options for the Status. I tried each of them, Enabled, Disabled and Monitor for client authentication. I could not find differen...
Resolved! Firepower 6.7.0 and Snort 3.0
Hi All, I am facing some issue after an upgrade from 6.6.0 to 6.7.0 for both my FMCv and FTDv. As per the release notes I should be able to switch to using Snort 3.0 after the update from the "Device > Updates page, in the Intrusion Rules group", but...
