Hi,I want configure authentication in ssh on cisco asa with ldap integration based on a group active directory of admins.Ill'explain, I don't want that every user can login, but only the users in a specific active directory group.Is possible?I try to...
Hello Everyone,We are using a very old Cisco ASA 5520 8.2(3) - I know it is extremely outdated, we will be replacing it next year, but the problem we are facing is quite odd and I want to try to find the root cause of it. It has been working for many...
We are on Cisco ASA 5516. There is an interface 10.50.70.0/23 on the firewall and it has outbound access list set to 'permit any'. But there is no NAT configured for this interface. Yet, systems behind this interface are able to access internet, how ...
Hello,I haven't been able to find any documentation online regarding this but what do the +/- , Up/Down and the + sign with green circle around it beside the categories actually mean (see screen shot)? Thx in advance for any help provided.
Hello All, I've been troubleshooting an issue with getting Single Signon to work with AnyConnect, using SAML and a hosted id provider. In the end, it appears to have been an issue with time sync. So I wanted to configure both our FMC and FTD to s...
I found that my mail server was classified as Bittorrent in the connection event.But the Port he uses is SMTP 25 port.
I thought I configured dynamic DNS update correctly but it still not working. My DNS server is an internal bind server and I configured the zones in question with allowed-update any. zone "5.50.10.in-addr.arpa" IN { type master; file "db.5.50.1...
Hello everyone As the title says, we have multiple FTDs managed by an FMC and when I try to generate a backup for them, this will remain stored locally inside the FTD. The remote storage seems to be configured properly as when I test it through the "...
Hi,Have CRL file on Cisco ASA a maximum dimension in order to cache it? For example, on Cisco VPN Concentrator 3080 the maxuimum dimension is 1 MB.Thank you.Best regards.Massimiliano.
Hi every one I'm fine tuning the limit rate on arp inspection, but I itch in my head over the correct understanding of arp inspection burst interval. In fact, another person has asked the very same question https://www.mail-archive.com/ccie_security@...
I have ASA 5506 version 9.8(2) in my office which connected to two (2) ISPs. I had implemented PBR to split our LAN subnet JTP and WIFI_JTP to respective route map. Subnet JTP which comes from wired vlan route-map to ISP 2 MYNET static ip and subnet ...
Dear Community, We are currently using the Geolocation Blocking feature in our ACP's, blocking traffic to/from some specific countries. However, we have run into the occasional instance where we need to whitelist a single IP that resides in a specifi...
Hello. I have a customer who has been complaining of slow internet. I have verified packet loss pinging out to the internet on a users machine. A packet capture also shows a fair amount of TCP retransmissions and Out of order packets. Upon further in...
Hello everybody,our customer has a Firepower 2110 Appliance that is runningASA OS 9.10(1)44.Our monitoring throught an alarm because missing NTP synchronisation.When I go to the chassis manager I entered the folloing commandsto check this: firepower-...
Think ASA and ASDM are compatible. Have setup capture and can see the traffic on https but asdm not working. show capturecapture capin type raw-data interface Outside interface management [Capturing - 738 bytes]match tcp host 10.10.205.183 host 10.40...
