Dear Team,The issue occurred on ASA 9.18(4).22, which is managed by CSM 4.25 SP1.Thanks,Anuradha
Forum Posts
Hi all,What's the general consensus about FMC's IPS recommendations? I currently run a base policy of "balanced security and connectivity".Currently, my IPS is 477 alert rules, 9512 block rules. I ran the recommendations, and it went to 1 alert rule,...
Hi,I have exported an ACP from on FMC 2500 onto a blank new FMCv. I have then upgraded the FMCv and plan on migrating that ACP to a newer FMC already in production and migrating two firewalls. My issue is when I imported the ACP onto the blank FMCv I...
Resolved! PBR with AnyConnect
I'm having trouble figuring this out from the configuration guide, and ChatGPT is giving me answer that I'm questioning.I have an ASA (technically a FPR in ASA-only mode) on v9.20. I'm running AnyConnect, but I want to have two groups that each forw...
Hello Team,I have a Cisco PIX 506E device and I've forgotten the password and IP address. I haven't used it for a long time.I would like to know how to find its IP address since I no longer have the password.Thanks in advance for your help.
I added about 500 network objects by IP, and group them into an object group called white-list. 2 days later, I modified ACL access-in from allowing source any to white-list. The action was to delete original access-in ACL (total 6 rules, included im...
HiA client (Bank) Has Cisco ASA 5525 and they want to migrate to the Firepower 3120.1. Is it possible to completely restore their current configurations from the 5525 to the 3120 appliance?If not possible, what steps should be taken to completely hav...
So I can't find any real information about this, and Cisco's guide for NTP on NEXUS only uses md5. Does the Nexus OS support sha256 for NTP?
Hi All, Is there any Cisco step by step guidance on How update the Default web server certificate via FDM? currently when I logged into FDM via browser the connection is not secure. Thanks.
As usual, I've taken the FMC to the new version - the attached devices are now all pending upgrade to that new version.So, follow the normal path : Product Upgrades -> etc -> get to the point where you run the readiness check... Readiness check runs,...
Hello, I can not find an answer to this anywhere online. It would seem self-explanatory, but apparently it's not. What encompasses the "Snort - Denied Flows" that can be seen for the FTD in FMC's Health Monitor? The numbers I am seeing in the "Snort ...
I have a network with several remote sites that have a single FTD 1120 all with site to site VPNs connecting back to a central location. The FTD's are all managed via their public IP by the FMC at the central location. The site to site VPNs connect f...
We are coming up on replacement time for our firewalls and are replacing an 1120. Just looking at specs I can't see why we would go with the 1140 even though that's the first recommendation our vendor had. the 1220cx shows better specs and is cheaper...
Resolved! Reset Cisco PIX 506E to factory defaults
Hello Cisco Team,I am using a cisco pix 506e firewall.I would like to reset the default settings of this firewall.But I forgot the administrator password and the IP addresses of the different interfaces.Thank you in advance.
The work around we were able to leverage was instead of using the NAS-IP-Address in the Radius policy set we used the Device-Access-IP-address which is still part of the Access-Request packet. We left the NAS-IP-Add and used the OR statement. Once t...
