Network Security

Our ASA [ver. 9.10(1)] does multicast routing and the source is directly connected on inside. Every once in awhile a multicast stream (group) does not get forwarded to the RP (outside) and is dropped (show mfib ), and stays dropped. Performing a clea...

Hi all, i'm looking for some clarification.  We have two firepower 1120 which we want to deploy in HA active/standby configuration.I have been reading up on my options around interface redundancy, and as far as I can tell we cannot operate with redun...

Hi, I have Firepower [FTD] in HA, Both the Firepower devices are connected to Nexus (93180 FX).I have configured BGP between Switches and and Firepower,While doing Firepower switchover or  switch failover ( Shutting down on switch] , we observed that...

HI,It's taking long time in active/standby FTD switchover,Is there any mechanism to minimize the fail-over time or is there any config required?  Primary Unit to Secondary unit - it takes 5-6 seconds Secondary Unit to Primary unit - it takes 10-11 se...

Hi FMC/FTDI.m looking at creating an object for EOIP  protocol (97)when I go to add new port object I select other tab and can see ETHERIP(97) is this correct and is it safe to do this, its to allow a capwap tunnel through. Thanks

HI, I am not able to deploy policies from FMC , have tried in many ways but issue remains unresolved, I am planning to Reset the FMC  to facory default setting and start the fresh configurations, Pls let me know the process to do the same I have two ...

Hello everyone, I need some help with licencing. My smart licence is expired. I'm trying to configure ASA but I can't do anything without 3DES/AES alghorythm. So, I have read how to enable it and in order to that I need to generate token. I have gene...

Dear all,I have a network which in this Netwrok my FTD isnt connected to internet because of some security issues. As far as I know, to use AMP, our FTD has to be connected to Cisco cloud. In this scenario, my FTD isnt connected to cloud and the rule...

I have a very basic question. We have a Cisco ASA 5505 in our personal office. It limits the bandwidth to only 100 Mbps. Our internet is 300 Mbps so we're not getting the full functionality of our internet. We want to upgrade the 5505, but not sure w...

Hello all, Our offices are mpls connected and some of them have also local internet with FTD devices.I am trying to create a full mesh topology on these offices as a backup, in case we lose mpls connection. All of our FTDs are connected and managed b...

Hi Guys,I have configured a Zone Based Firewall (ZBF) on an ASR1000 and doesn’t appear  to be working.  The traffic flow on my setup is as attached.Our main objective from the ASR is as follows. NAT the 172.18.2.0/24 & 172.18.3.0/24  using a NAT pool...

Hello, Last week we have updated our ASA 5516-X firewalls with ASA Software version 9.14.2.4. After this upgrade Firefox 85.0 has some issues with HTTPS page.It gives an PR_CONNECT_RESET_ERROR. If we use Edge or Chrome then there is no issue.If I go ...

Dear Team , I have cisco firepower FMC in Virtual and FTD model is 2110 as per cisco community search we came to know that Floodgaurd feature is enabled by default with this device My question is how can we enable it  and if its enabled so how can we...