Network Security

Resolved! Cannot Import HTTPS Certificate into FMC - SAN attribute

Hi,I'm using Cisco Firepower Management Center 1000 version 6.3.0.2. I tried to renew the HTTPS-Certificate under System -> Configuration -> HTTPS Certificate. I generated new certificate our CA and later I tried to import the new certificate. But I ...

Snmp User Config Nexus9000

Hello,I would like to know if there is any restriction when we config SNMP user in nexus 9000. I used to config in Catalys Switches with the command below, but in the NEXUS it give me the following error message. Do I have to specify the auth passwor...

ASA - communication between AnyConnect (Interface1) to remote network through the VPN (Interface2)

Dear Experts, I'm facing a problem with communication between two interfaces (outside) with different public IPs. On one of them, I have an AnyConnect server and on a second one, terminated VPNs to the data centres. I would like to allow traffic from...

FTD with multiple WAN connections - how can I control Identity NAT out each interface?

We have (2) networks (C's), publicly accessible. I am trying to to place 1-to-1 (or identity NAT) on both interfaces, but routing force everything out my lowest metric, and I do not want ECMP (load balanced) config.i.e.Routes metric 1 [int 1/1] - GW ...

Resolved! ASA capture with SFR

Dear all I have a short question to you guys, when I run a capture on the outside (Internet) interface of an ASA-5545 (the ASA has the SFR module installed and acts as a NGFW) with the following command:capture capin interface outside match ip host 1...

Vulnerable Ports

Hi, can anyone please provide a cisco document with the list of vulnerable ports to be blocked in cisco firewall? Thanks,

ASA 5506-X cannot boot system.

I have a ASA 5506-X that will not boot. It constantly repeats the following errors File system not supportedAttempt autoboot: "boot disk0:"File system not supportedboot: cannot determine first file name on device "disk0:"autoboot: All boot attempts h...

Firepower IPS Sensor | 3D7120 | Memory high

Is any workaround to reduce memory high on FPR7120 ?In FMC it showing critical alert. Run the command on SFR as below :Is anything else that I can check/////////////////////////////////////////////////////////////////////////////////Sourcefire Linux ...

Resolved! FMC failed to deployed to FTD

Hi, Any idea on this error ? FMC >> no object-group service PINGFMC >> policy-map global_policyFMC >> class inspection_defaultFMC >> no inspect sipFTD01 >> error : ERROR: Inspection not installed or parameters do not matchOther logs

Configure double NAT on ASA

Hello, I'm running a Cisco 5506-x with ASA code. I have the device set up at my house and I would like to use it with a existing network. I have the outside interface plugged into my modem directly which is not in bridge mode so I believe I need to c...

Resolved! Locating reason why COA was issued in ISE log

My ISE server sometimes reports dynamic authorization failed for device. How do I locate what triggered this event in ISE? Description :Network Device has denied the Change of Authorization request issued by ISE Policy Service nodes

ASA5506-X - There are differences between boot sector and its backup

HiMy ASA5506-X logs this problem during bootup:"There are differences between boot sector and its backup.Differences: (offset:original/backup)65:01/00Not automatically fixing this." I have studied CSCvn64163 bug info, but not managed to fix it. From ...

Cisco FTD Multiple Context

Hello All, We have to configure Cisco FTD 411X in multiple context mode . Will configuration steps and commands are same as like ASA, if not can anyone please share configuration example . is the command for swiitching between the context are also sa...

Get Time-out with captive portal FTD

Hi all,I am using the Captive portal on FTD serial 4110 version 6.4.0.7. But I often got Time-out errors when I auth on the website of FTD port 885. I see some refusing bellow. Any know?"[pid 21756:tid 47295284463360] [client 169.254.0.239:34822] Ref...

Resolved! SFR is stuck in recover for 12 hours (ASA5545-x)

We are doing a clean install of version 6.6.1 from 5.4, - We successfully uploaded the img file - Ip address assigned - PKG file uploaded via FTP and system install command applied - After 15 hours the SFR was still in recover mode. ***** EVENT: The...

Network Security

Forum Posts

Resolved! Cannot Import HTTPS Certificate into FMC - SAN attribute

Snmp User Config Nexus9000

ASA - communication between AnyConnect (Interface1) to remote network through the VPN (Interface2)

FTD with multiple WAN connections - how can I control Identity NAT out each interface?

Resolved! ASA capture with SFR

Vulnerable Ports

ASA 5506-X cannot boot system.

Firepower IPS Sensor | 3D7120 | Memory high

Resolved! FMC failed to deployed to FTD

Configure double NAT on ASA

Resolved! Locating reason why COA was issued in ISE log

ASA5506-X - There are differences between boot sector and its backup

Cisco FTD Multiple Context

Get Time-out with captive portal FTD

Resolved! SFR is stuck in recover for 12 hours (ASA5545-x)

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Cisco asaV FPR1010 image downgrade

how can i calculate concurrent session?

Is there a way to fail over from ASA Multi-Context 1 to 2?

Palo Alto to Cisco Migration Tool count_summary error

FMC and multiple AD domains

Default route to 2 different ISPs on Cisco ASA

FTD Packet matching criteria? L7 vs L3/4

question about a guide to how to buy a Firepower

the number of nat sessions of firepower?

FMC DHCP Option