Network Security

Inside interface keeps beeing intermittent

Dears, good morning.I am passing throw some problems in our border Cisco ASA 5525-X appliance. Operatinal System Version: 9.12(4)ASDM: 7.13(1) The problems are:1) Our inside interface keeps beeing intermittent. Inside interface keeps going down momen...

Cisco Firepower 1140 Firewalls Etherchannel

Hi, I have a pair of Cisco 1140 FTD appliances configured in HA. For the Internal network I was planning on creating an Etherchannel using two firewall interfaces to connect to our Core switches stack and use subinterfaces/VLANs for various Zones. I ...

How to fix mgmt interface ip in ASA failover from switching

Hello, In ASA failover all interfaces whether they are monitored or not (using no monitor-interface) will switch their ip addresses when failover occurs or via 'failover active "command. my question is : Is there any possible way by which we can f...

Resolved! FTD 2110 HA SNMP Monitoring

Hello Experts,I need your help.We have 2 FTD 2110 devices configured in HA and managed from FMC. My requirement is to monitor high availability state and whenever failover happens, device should generate SNMP trap. Device is already configured with S...

Where to find CVEs impacting AIR and SDWAN platforms?

Hello There,I use Cisco Software Checker to check/verify impact of vulnerabilities on different OS or OS-XE, however, I cannot find the similar information for Wireless OS (AIR) and SDWAN OS. Could somebody please give me an advice where to find on C...

Cisco asa new tcp connections per second

I want to limit formation of new TCP connection per second for a given source.Is there any way I can achieve through any feature ?I checked conn-max and embryonic connection limit but that limits simultaneous connection not per second.MPF does not ha...

Resolved! CVE-2020-3452 and ASAv ver 9.10.1.42

Hello, we're running ASAv ver 9.10.1 and need to fix the CVE-2020-3452 vulnerability (https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ro-path-KJuQhB86). However, I can't find the 9.10.1.42 which contains the fix....

ASA Reg Expression Exact Match

I am trying to build ASA regex which will match only if the URL Is exactly https://yahoo.com But it is also matching https://yahoo.co or https://yahoo etc ciscoasa# test regex "https://yahoo.com" "https://yahoo.co"INFO: Regular expression match suc...

subinterface with portchannel configuration in ASA 5525X

Hi team, Is it possible sub-interface with port-channel configuration in ASA 5525x series? please confirm. suppose if possible please share the link for the same. Thanks Muthukumar

Resolved! How to reset Firepower 1120 Device Manager admin password

HI, Expert, I am a new man working on Cisco Firepower 1120. Unfortunately, I setup a complex admin passwod. and PC crash and the password not saved. How can I reset the password? As sophos can conect to monitor, keyboard to do this. Which tool should...

FTD 5525X FTD-ha-3-210005 LU allocate connection failed for TCP connection from

We saw this syslog %FTD-ha-3-210005: LU allocate connection failed for TCP connection from inside:A.B.C.D/xxxx to outside:173.243.132.167/514" every time. I verify that this public IP is used for Fortinet. And the A.B.C.D Ip is our Firewall Fortinet....

Resolved! Cisco ASA 9.12 - SSL Anyconnect VPN Split tunnel

Hello @nkarthikeyan @balaji.bandi @Rob Ingram @Vikas Saxena @Jon Marshall @Marvin Rhoads @Scott Fella Case 1:I Configured Cisco SSL Anyconnect VPN and I can connect to VPN and I am getting a default route on the VPN client machine. That means ev...

ASA NAT Multicast source address

Is it possible to NAT the multicast source address to the public facing ASA (v 9.10) ?Everything works to the receiver, but with the original source IP intact. nat (inside,outside) source dynamic (original_private_network) interface destination stati...

Resolved! Can not create a Radius Server in Firepower 2110 with fdm 6.2.2

Hello, I am trying to configure MFA with RSA. To start, I need to create a Radius server but I can not find the option under Objects>I also can not delete the identity reelm I have already created before. What is going on with this series???

How to back out of failed FMC update?

I have a 6.1 FMC running on vShpere 5.1. and am now aware 6.2+ requires vSphere upgrade.However, I'm stuck at:"[11%] Running script 000_start/400_run_troubleshoot.sh... " and can't log into the console to back out of the update.Anyone know how to do...

Network Security

Forum Posts

Inside interface keeps beeing intermittent

Cisco Firepower 1140 Firewalls Etherchannel

How to fix mgmt interface ip in ASA failover from switching

Resolved! FTD 2110 HA SNMP Monitoring

Where to find CVEs impacting AIR and SDWAN platforms?

Cisco asa new tcp connections per second

Resolved! CVE-2020-3452 and ASAv ver 9.10.1.42

ASA Reg Expression Exact Match

subinterface with portchannel configuration in ASA 5525X

Resolved! How to reset Firepower 1120 Device Manager admin password

FTD 5525X FTD-ha-3-210005 LU allocate connection failed for TCP connection from

Resolved! Cisco ASA 9.12 - SSL Anyconnect VPN Split tunnel

ASA NAT Multicast source address

Resolved! Can not create a Radius Server in Firepower 2110 with fdm 6.2.2

How to back out of failed FMC update?

Live Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Cisco FTD portscan

ASA-AWS - EC2 IMDSv1 required for the PAYG license to be applied

how are blocking cookie and java be applied in real situation?

Comm test between subinterfaces and physical ports in ASA Firewall

Queries with Cisco Secure Client 5.1.3 & ISE

DDOS and "Error processing payload: Payload ID: 1"

ASDM unable to login for v7.18(1)152

Logging Informational Configuration in Cisco ASA

ASA 5516X Memory (DRAM) Upgrade

2 FTD Interfaces in the same FMC security zone