I have 3 insides : Inside-01 : 172.16.1.0/24Inside-02 : 172.16.2.0/24Inside-03 : 172.16.3.0/24 From Inside-03, i can ping all range in Inside-01 From Inside-02, i can ping all range in Inside-01 except one ip(172.16.1.121) i disable all firewall in w...
Forum Posts
Dear community, Cisco User Agent does not authenticate users. The problem is intermittent and sporadic, and resumes to work properly after restarting the FMC console or the FUA agent. Note: Firepower version is 6.6.1 and user agent is v2.5.1 Does a...
Resolved! registering FTDv Azure to FMC on-prem
Hei,I am trying to register FTDv in Azure to FMC on-prem over express route. I am getting error " "Discovery failed due to internal error contact TAC". I also see communication established messages. Used same configure manager add IP key nat-id on bo...
Resolved! inside,inside NAT on ASA
Hopefully my terminology is correct. I'm not a Cisco expert by any means. I have an ASA5506 at SiteA listening on 10.10.1.1 and an ASA5506 at SiteB listening on 10.10.20.1 and a site-to-site VPN between the two. I have another device at SiteA listeni...
Hi Guys, How to allow ping from INSIDE Interface to Management interface in ASA 5525. Cisco Adaptive Security Appliance Software Version 9.8(1) Regards,Ermias W
Resolved! Cisco ASA- AnyConnect VPN - setting MFA
Hello Guys, @Rob Ingram @balaji.bandi @Richard Burts @Joseph W. Doherty I had VPN setup with ASA with AD authentication with one of the server and its working flawless.I want to setup 2 MFA with Duo or Azure MFA, which is better solution? Also,...
In FMC 6.7.0 version what is the CLI Command to see user id with IP Mapping ? Below command does not seem like to work. root@FMC:~# user_map_query.pl --iu -i 10.7.228.28 WARNING: This script was not tested on this major version (6.7.0)! The results ...
Hi, I want to do a static nat for 192.168.1.10 to 2.2.2.10 so that the traffic comes through the second ISP. What need to be done on ASA side to achieve the above load balancer is a third party appliance Thanks
The ICMP logs (ASA-6-302021) we are currently receiving from the ASA do not contain the byte count for the packet. Is this design intent or a config issue?With the rise in hackers using icmp for exfil this is a critical piece of data. TIA Ihor
Hello All, I have a 2100 appliance running ASA image on it, I was able to point the ASA module to TACACS server for authentication however when I try the 2100 chassis itself, the AAA option is not available under platform settings (GUI). I have anot...
Resolved! Anyconnect
HiCan anyone point me to a good document on configuring Anyconnect for FMC/FTD 6.4-6.5 please. Thanks
Resolved! Migrating from Firepower FDM to FMC.
When migrating from Firepower FDM to FMC is a reimage required? Or can you just delete the manager configuration and reboot?
Looking for proof for an audit that this is set. Does not show this setting under "show user" or in the configuration under luna or fxos. Tested in lab setting. Configured via FTD CLI user add john config minpasswdlen 8. Then running "show user" comm...
Hello everyone , We have an installation on a Cisco ASA FTD Image which we managed through FDM and not FMC . Is there any way to perform QoS , we basically need to give priority to a specific network flow ? Is there any way to implement this to ...
Resolved! Firepower boot disk full
Hi, we've been having issue with one of our Firepower modules.I've tracked the issue down to the /boot disk being full. Here's a listing of the files; root@Firepower:/boot# ls -lahtotal 51Mdrwxr-xr-x 6 root root 1.0K Sep 3 2015 .drwxr-xr-x 22 root ro...
| User | Count |
|---|---|
| 10 | |
| 5 | |
| 5 | |
| 3 | |
| 1 |
