Hi Guys,I recently configured our ASA 5515X firewall with anyconnect vpn. The VPN client can log in and connect to the internet due to tunnel all traffic. However, the vpn clients (192.168.150.0/24) cannot see the internal network on 192.168.0.0/24 (...
Forum Posts
Hi,I'm having difficulties renewing a manual certificate on my FMC/FTD at the moment. The old one is expired.We renewed the certificate using the old CSR we had saved from the first enrollment.But after uploading the new CRT, the FMC ends up with tha...
Hello, A vendor is trying to set up a site to site to site VPN connection from their network to a internal router on our network. They have a juniper router on each side with our ASA in between. I have set up a public IP that is natted to the ip addr...
Resolved! Classic License in FMC
I haven't applied a classic license in the Cisco FMC before but I'll need to install a new one as we have one of our license that will be expiring in 3 months. When I install the new Classic license which is for url, does it update the existing licen...
Hi,I'm trying to create logical device FTD with Instance Type "Container" on a 4110 (running 2.6.1). At first I tried it via the FCM, but there I can only select native (the dropdown is greyed out) as you can see:I then found a remark in the Cisco do...
Hello, I have a pair of FTD 1010 in HA. It is a new installation and some time I run into the below problem. The internet is blocked. I am thinking that the FTD downloads signatures or sth like that. Are there any schedules for that? Where could I f...
Dear Team, Need to enable IPS/IDS feature in CISCO ASA 5580-40 model.Kindly help us to how to enable these features.And suggest me any hardware module required for this feature. Current Version: asa845-smp-k8.bin Regards,Chaitanya Gowtham A7680095520
Greetings,I am the process of updating and standardizing our AAA configs. This is a current section: aaa authentication login default group tacacs+ localaaa authentication login console noneaaa authorization config-commandsaaa authorization exec defa...
Resolved! Packet tracer in FTD limitations?
hi out there I just got a bit surpriesed when I was chasing a "hit" in a ACL on a firepower 4110 running FTD OS 6.6.1 - we have ACL whcih is pretty high - near the top - of the policy - which is pretty open but based on AD-group membership. When I ra...
Hi all,We have an FMC appliance deployed in VMWare for managing FTD clusters. However, the system intermittently displays the following warning "High Disk Space Utilization". In general, FMC GUI can take up to 30 seconds to load when you log in and r...
Does anyone knows when exactly did FTD changed remote syslog messages format? Up to 6.2.3, the syslog had the following pattern (as received by a remote syslog aggregator): Spoiler# Dec 29 20:56:43 ftd ftd SFIMS: Protocol: TCP, SrcIP: 1.1.1.1, Origin...
Hi everyone I'm having this rare issue in which i have an inbound ACL with a "permit any any" rule at the bottom that is logging its matches so i can declare the application traffic on top of it and delete this unsecure rule . The thing is i have con...
Resolved! ASA-5508 File system not supported
We have an ASA-5508 that was running FTD, but for a location we're placing this at, we decided to migrate this to ASA firmware. I used the following commands after deleting the contents of the flash: rommon 0 > address 10.86.118.4rommon 1 > netmask 2...
Hi everyone, - I'm using the default ASA firewall config (inside is 192.168.0.0/24) and setup the FirePOWER module to use 192.168.0.2/24. I can ping the FirePOWER module from my PC and from the ASA's CLI and can connect via SSH. - I've ran "show modu...
Resolved! FDM Etherchannel
Hello,I have got a FRP 2130 FTD v6.3.0 (mode evaluation, not yet insert the token) and I am doing testings on lab.1. Can I create Redundant interface ? (used on ASA 55xx)2. Can I create Etherchannel? How? I didn't find them out on FDM. Only possible ...
