Resolved! PCI Compliance VRFs or VLANs?
Are VRF's necessary to be PCI compliant or can I just do a PCI VLAN and add ACLs?
Are VRF's necessary to be PCI compliant or can I just do a PCI VLAN and add ACLs?
I am trying to open Port 5253 to permit an outbound connection for our new Kohler Generator. I thought I could do it the same way I was opening other ports but I do not see port 5253 as an option when I am in ASDM with Access and NAT rules. Any ideas...
Our customer has an IPsec VPN to AWS via (Vti with Ikev2), Whenever the users connect via Anyconnect to reach the application in the AWS they seem to have issues when running a big query on their client. When the users do a simple query (sql-1521) th...
We are working on setting up a HA FTD 1150 pair with FMC both running Version 6.6.1I configured NTP on the FMC wihtout issues. Then i deployed the same NTP server (singular) to the FDTs via a configuration policy under platform settings. It works sor...
Hi,I'm using Cisco Firepower Management Center 1000 version 6.3.0.2. I tried to renew the HTTPS-Certificate under System -> Configuration -> HTTPS Certificate. I generated new certificate our CA and later I tried to import the new certificate. But I ...
Hello,I would like to know if there is any restriction when we config SNMP user in nexus 9000. I used to config in Catalys Switches with the command below, but in the NEXUS it give me the following error message. Do I have to specify the auth passwor...
Dear Experts, I'm facing a problem with communication between two interfaces (outside) with different public IPs. On one of them, I have an AnyConnect server and on a second one, terminated VPNs to the data centres. I would like to allow traffic from...
We have (2) networks (C's), publicly accessible. I am trying to to place 1-to-1 (or identity NAT) on both interfaces, but routing force everything out my lowest metric, and I do not want ECMP (load balanced) config.i.e.Routes metric 1 [int 1/1] - GW ...
Dear all I have a short question to you guys, when I run a capture on the outside (Internet) interface of an ASA-5545 (the ASA has the SFR module installed and acts as a NGFW) with the following command:capture capin interface outside match ip host 1...
Hi, can anyone please provide a cisco document with the list of vulnerable ports to be blocked in cisco firewall? Thanks,
I have a ASA 5506-X that will not boot. It constantly repeats the following errors File system not supportedAttempt autoboot: "boot disk0:"File system not supportedboot: cannot determine first file name on device "disk0:"autoboot: All boot attempts h...
Is any workaround to reduce memory high on FPR7120 ?In FMC it showing critical alert. Run the command on SFR as below :Is anything else that I can check/////////////////////////////////////////////////////////////////////////////////Sourcefire Linux ...
Hi, Any idea on this error ? FMC >> no object-group service PINGFMC >> policy-map global_policyFMC >> class inspection_defaultFMC >> no inspect sipFTD01 >> error : ERROR: Inspection not installed or parameters do not matchOther logs
Hello, I'm running a Cisco 5506-x with ASA code. I have the device set up at my house and I would like to use it with a existing network. I have the outside interface plugged into my modem directly which is not in bridge mode so I believe I need to c...
My ISE server sometimes reports dynamic authorization failed for device. How do I locate what triggered this event in ISE? Description :Network Device has denied the Change of Authorization request issued by ISE Policy Service nodes
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
09-12-2024 08:37 PM | ||
08-30-2024 11:35 AM | ||
08-19-2024 03:53 AM | ||
08-14-2024 08:06 AM | ||
08-08-2024 06:44 PM |
User | Count |
---|---|
8 | |
7 | |
6 | |
5 | |
4 |