Hi Everyone, I have customer who has an ASA in Active/Standby mode and have SAML Single-Sign-On configured. The SAML SSO works fine but during failover, it gave and error "Authentication failed due to problem retrieving the single sign-on cookie. ...
Hello, Zone Based Firewall is dropping packets from one interface to another and I cannot understand why.1) There is a zone-pair between both interfaces2) All IP traffic is allowed3) In the log says (target:class) - (none:none). Not event class-defau...
Hello, I am facing a problem to have RDP port forward to a PC inside the firewall on ASA-5506-X. ASA version 9.8.Ethernet port 1 configured as ouside, ethernet port 2 configure as inside_1, ethernet port 3 as inside_2. other enthernet ports are disab...
Hi team! I currently have an FPR 1120 which I manage from my FDM. The version of Threat Defense used is 6.4.0 102. I require network management much like ASDM does with ASAs. With URL filtering, network throughput management, etc. Is this possible w...
hello I have two ASA 5585-X in an Active/Standby failover.I tried to install the 10GE license on both units. I am getting the below error. SHZF-DBFW-5585X-01# activation-key d81ace61 1838c7b5 7870a944 85949800 c73b0680Validating activation key. ...
We are looking to get 2 new FTD's and want to deploy them in a HA pair, I've been going thru docs and designs and noticed all of them show a RTR as the edge device and both FTD's coming off of that. (with private ip addresses on the outside interface...
Good Day,I would like to lock my ASA-5506 down to allow WebVPN access only from the remote office. I am thinking I need to apply an access-list to the external interface?webvpnenable outside permit 8.8.8.8 255.255.255.252 <-- used google dns as an ...
Hello all,I am able to ping from R4(G0/0) to R1(G 0/0).But not from R4 to R1. Because R4 is behind ASA. I have copied the images and details for reference.R1 -10.0.0.1/24 R4 -10.1.0.1/24 R1-R2 -10.0.0.0/24 R4-ASA -10.1.0.0/24R2-R3 -20.0.0.0/30R3-AS...
I am running an ASA5506x in FTD mode. Managing it with FDM. I can't seem to find an option to create a DHCP relay. I have found documentation on how to do it with FMC so I assume that it is possible with FTD. Any idea if there is a way?
Hi, Recently, I have faced a strange error while I was trying to access my FMC GUI after 1-2 months! The server returns the following error (Image 1) and nothing stops it. I have tried to restart my virtual FMC and also tried to change GUI password i...
Hello As from 6.7 FMCv does support HA for 10 devices ++ , does FMCv version 7 for (2 devices license) support HA, i cannot see that on release notes
I have a 5506-x, v9.9, connecting to an AWS VPC with VTIs. Connectivity to AWS is fine, and all internal hosts can communicate with AWS resources. Issue I'm having is that ASA cannot communicate with AWS resources with source interface set as "inside...
Thank you everyone for stopping by. I want to configure a port to scan malware on a virtual FMC managing two 2110 Firepower devices and can't find out how to do that. During a Sales team visit we received advice to buy this suite and it would do a...
Hi all, in order to do any troubleshoot in firepower FTD 6.4, but at this point any version, in which sequence are these 3 things executed? NAT/Routing/FW rule Thanks Davide
We are renewing a Digicert Identity certificate, and we get "Error: Import PKCS12 operation failed. Base64 decode failed. Our certificate SME insists the cert is good as he can convert the pfx to a pem (base64). Does anyone have an ideas for me to lo...
