I think I have a relatively easy one. Currently our ASA 5515 with firepower services is only allowing browsing to trusted geolocation for internet browsing through Firepower services at our corporate location. We want to change that, and only allow o...
Hello. Our Smartnet contract expired and we bought a renewal license, our reseller sent us the new license that includes a PAK, when i try to activate the license and assign it to the ASA, it asks for a license key and gives directions on how i can f...
Hi,I have four admin users on my ASA all with level 15 access but not of them are able to SSH to my device.I have checked SSH settings and it is allowed. Is there anything I could have overlooked? I'm sure this has worked in the past as the device is...
I have 3 insides : Inside-01 : 172.16.1.0/24Inside-02 : 172.16.2.0/24Inside-03 : 172.16.3.0/24 From Inside-03, i can ping all range in Inside-01 From Inside-02, i can ping all range in Inside-01 except one ip(172.16.1.121) i disable all firewall in w...
Dear community, Cisco User Agent does not authenticate users. The problem is intermittent and sporadic, and resumes to work properly after restarting the FMC console or the FUA agent. Note: Firepower version is 6.6.1 and user agent is v2.5.1 Does a...
Hei,I am trying to register FTDv in Azure to FMC on-prem over express route. I am getting error " "Discovery failed due to internal error contact TAC". I also see communication established messages. Used same configure manager add IP key nat-id on bo...
Hopefully my terminology is correct. I'm not a Cisco expert by any means. I have an ASA5506 at SiteA listening on 10.10.1.1 and an ASA5506 at SiteB listening on 10.10.20.1 and a site-to-site VPN between the two. I have another device at SiteA listeni...
Hi Guys, How to allow ping from INSIDE Interface to Management interface in ASA 5525. Cisco Adaptive Security Appliance Software Version 9.8(1) Regards,Ermias W
Hello Guys, @Rob Ingram @balaji.bandi @Richard Burts @Joseph W. Doherty I had VPN setup with ASA with AD authentication with one of the server and its working flawless.I want to setup 2 MFA with Duo or Azure MFA, which is better solution? Also,...
In FMC 6.7.0 version what is the CLI Command to see user id with IP Mapping ? Below command does not seem like to work. root@FMC:~# user_map_query.pl --iu -i 10.7.228.28 WARNING: This script was not tested on this major version (6.7.0)! The results ...
Hi, I want to do a static nat for 192.168.1.10 to 2.2.2.10 so that the traffic comes through the second ISP. What need to be done on ASA side to achieve the above load balancer is a third party appliance Thanks
The ICMP logs (ASA-6-302021) we are currently receiving from the ASA do not contain the byte count for the packet. Is this design intent or a config issue?With the rise in hackers using icmp for exfil this is a critical piece of data. TIA Ihor
Hello All, I have a 2100 appliance running ASA image on it, I was able to point the ASA module to TACACS server for authentication however when I try the 2100 chassis itself, the AAA option is not available under platform settings (GUI). I have anot...
HiCan anyone point me to a good document on configuring Anyconnect for FMC/FTD 6.4-6.5 please. Thanks
When migrating from Firepower FDM to FMC is a reimage required? Or can you just delete the manager configuration and reboot?
