Welcome to the Cisco Community Ask Me Anything conversation. Submit your questions from Wednesday, March 4, 2026 through Wednesday, March18 2026. Our Experts Ike Chon, Scott Nishimura, Annya Martinez Foster, Jyhan Ocana Casillas, Eder Pacheco, Willi...
Forum Posts
I guess I have some main confusions related to the File/Malware inspection/protection feature on FMC/FTD: 1. From FMC Configuration Guide for File policies and advanced malware protection here: "A policy can include multiple rules. When you create th...
Hello together, I want to connect our FP1010 (IOS 9.14.x) over VPN-Tunnel to our internal SSMS on Prem. Like this:https://ssms.mycompany.local/Transportgateway/services/DeviceRequestHandler But my DNS config is pointing to external: dns domain-lookup...
Hello All,We have setup a new ASA 5516X running FTD 6.2.3.2, and have certain events being logged to an external syslog server. The ASA is sending events to our server every few seconds with events such as:%ASA-2-106006: Deny inbound UDP from 169.2...
I've scheduled a weekly backup on my FMC to run every Sunday at 8 PM and for some reason, it always fails with the message, "Failure: Remote storage is enabled but not mounted." If I run the backup manually, it will backup the appliance fine so I kn...
Hi, I'm in need of assitance.The issue is as follows:Last week, friday, everything was worknig fine for everyone. Come monday, and some users can't reach interal resources, as well as can't connect to their workstations through Remote Desktop Connect...
Resolved! firepower multicast routing
Hi all, I would like to know if the firepower 1120 we recently purchased support the setup of multicast routing for FTD version 7 please? Thank you.
Hi,I was working on an issue a customer of mine had with NAT. The customer decided to tunnel all remote VPN and have the traffic u-turn on the outside interface. I created a nat (outside,outside) rule for this like I've done many times before for cus...
I am helping a client create a Vendor VPN on a 5515 ASA. They will be limited to a single subnet but need access to one internal IP address for internal DNS. We have the ACL's in place but DNS will not work. I did an asp-drop packet capture and am...
Hello Experts @balaji.bandi @Rob Ingram @Richard Burts @Marius Gunnerud @Leo Laohoo I updated Cisco ASA Fimware and VPN packages. The VPN Packages updated from 4.8 to 4.10. Is there anyway Cisco ASA push update of AnyConnect client on all the m...
Hi,Can anyone tell me where I can view the current time on FMC console, running v6.4.0?Looking at the current time is important while analyzing the connection and other events. I could not find time anywhere in FMC.Please help.Regards,Mohan
Its been bothering me for a while now. The flow charts on all Cisco documents show that 'VPN Decrypt' happens after checking for 'Existing Connections'. (see attached flow chart). My question is, how will FTD know whether the connection is existing o...
I have established OSPF neighbors with ASAv and routers Outside, dmz_b, inside_1 and inside2.Each router has its own loopback interface from 1.1.1.1 to 4.4.4.4 as below showed. But 3.3.3.3 cannot establish OSPF neighbor of ASAv. But I have advertise...
Can someone help me on this? what command line should I use in the head office firewall? thanks
Resolved! ASA 5585 upgrade question
I am planning to upgrade ASA5585-X from ASA 9.1(7)16 to ASA 9.12(4). Both versions are 9.x, but there is big difference between these two versions. Is there anything I need to be aware of? HW= ASA5585-X
I have working, Site 2 Site VPN between 2 location and ASA1 is managed by me.The ACL at ASA1 in inside interface is from source 192.168.1.1 to dstn 172.168.1.1 at port 3389 .I want to know in which interface the ACL has been applied on ASA 2 if it is...
