Hello Guys, @Mohammed al Baqari @balaji.bandi @Rob Ingram @Marvin Rhoads I am planning to update firmware from 9.9 to 9.12.3.12 including ASDM 7.14(1). I already upload both images to both unites.I will update the standby firewall first and boot i...
Forum Posts
Hello Everyone.... I am working on a configuration template for rolling a large amount (greater than 50) of ASA 5545X using 9.13(1) software. I am having a difficult time getting two Network Objects into an Object Group.I am able to successfully crea...
Hi I have customer who lost connectivity to various severs for 20 minutes a few days ago. Looking in the logs at the time of the issue the following was seen: %ASA-4-733100 [ Scanning] drop rate-2 exceeded. Current burst rate is 0 per second, max co...
Resolved! ASA OSPF routing scale
Hi all I am trying to confirm the maximum OSPF routing table size for the below firewalls. Any ideas where I can find the info ? All in multiple context mode FPR9K-SM-36 – asa ver 9.8(1) 5585x – SSP40 - asa ver 9.8(4)25 FPR4K-SM-12 - asa ver 9...
Hello Guys, Need help on troubleshooting the ssh from outside(WAN) interface, I attached the config below. Please advice with commands for troubleshooting. Thanks, Result of the command: "sh run": SavedResult of the command: "sh run": Saved:ASA Versi...
Currently in our environment we have ~100 ASA's that are all being backed up through Solarwinds: NCM. Within NCM we use a TACACS+ account that acts as a service account to access these devices, and the backups are pulled nightly, and saved. There wa...
I was wondering if anyone had a breakout of each vulnerability to command CLI or ASDM to prove that the ASA meets or can meet the check? Note: to view the STIG you can go to https://iase.disa.mil and download STIGviewer 2.8 to read the STIG. Than...
Hello Everyone... We are running ASA 5545X with 9.14 / 7.14. Under Configuration>Site-to-Site VPN>Advanced>Tunnel Groups We are getting a strange name of a Tunnel Group : "0.0.0.2"Nowhere in our configuration does it call out for it and it appears t...
Hello, We have around 150 Cisco ASA 5505 deployed in the field and we are currently in the process of upgrading our infrastructure. Currently, we have an RSA key used for authentication purposes on the ASA. Does Cisco ASA 5505 support using ecdsa key...
I wish to have your opinion on the configuration of my ASA cluster.because I am doing a failover, I have servers from the 152.28.0.0/16 server which can no longer reach the internet and also the servers from the DMZ 172.16.1.0/24 lan.At the ASA confi...
Resolved! ASA5520 & 2960x trunk issues
Environment:ASA 5520 (1 trunk with 7 sub-interaces) & Cisco 2960X (1 trunk port with 8 vlans) Problem: Switch can not reach Firewall ASA firewall can ping all its sub-interfaces and its trunk port but not the switch trunk port.2960 switch can ping al...
What's the best way to configure static active/passive MAC address for a failover pair? Asking, because there are basically two ways:1) Under FTD interface configuration -> Advanced -. Active/Standby Mac address.It is then being applied like this dur...
Could anyone please help as while enabling the PBR on Cisco ASA, not getting the trace result from other direction.I have set all the parameters like "set connection decrement-ttl" and allowed IP any any for testing on Firewall.Below is the Topology:...
Resolved! FirePower 1010 - Getting Started
I have several ASA5505 deployed with no issues going back over the years, but due to not having Gigabit ports, it was time to upgrade. I have my first FPR1010 here and have basic connectivity - However, I find that the built in FDM doesn't support PP...
Hi ,How can I clear arp for one entry in asa 5585 instead of all interface Thanks
| User | Count |
|---|---|
| 10 | |
| 10 | |
| 7 | |
| 5 | |
| 3 |
