helloPlease try to open on me firewall 5506-x the OpenVPN UDP port 1194, but without success.Define the machine and port, also double check the udp port, no chance. access-list outside_access_in line 1 extended permit udp any host 192.168.16.9 eq 119...
Forum Posts
I am using algosec fireflow for policy deployment in ASA firewalls.. algosec requires grouping of multiple IPs/Services into a single object.. for ex.. source 1.1.1.1, 2.2.2.2 destination 3.3.3.3 , 4.4.4.4 , 5.5.5.5 service : https , ssh , http I n...
Resolved! Context license for 2130 in HA
Dear all, I have a customer that want to use the ASA image on the We have a customer that want to use the ASA image on two 2130 in HA mode and also use multiple contexts. Do we need to buy the context license for two boxes or just one? BR And...
Hi,on friday I tried to upgrade to asa9-14-2-15 and asa9-14-2-13.Currently we are on asa9-14-1-30. Because of the newly published vulnerabilites I wanted to upgrade.It it an Failover cluster. After pushing the file on the machines and putting it at f...
Hi, We have a number of 5506-X devices licensed for URL, IPS, and Malware filtering on the Firepower Module. These are installed in an education setting and therefore it is critical that certain content is blocked for the children using the network. ...
We have an ASA5510 (running the last s/w for that device) that has long been providing ipsec VPN service to our users whose primary purpose is to give remote users secure access to inside our firewall.. We had a temporary network change a couple of ...
I found various Cisco articles regarding multicast support for FTD (4120) and vFMC. I've not been able to track down limitations, t though. The firewall pair will be configured as routed HA, and the firewalls will be connected to a pair of Nexus7K us...
My client has 2 ASA 5545 9.12 (3) 12.Both are configured in LMS with your correct and verified credentials. but when executing any task, it reports a validation error.When trying to run a Compliance baseline, one of them does it successfully but the ...
Resolved! FMC Backup Files
Hello Everyone, We have a FMC 2500, and I noticed that its backuping twice the configuration files.The first time is on the folder we specified and the other is under "sf-storage". I wonder if its because the "Remote Storage Device" is configured and...
This is our 3rd implementation for a particular project, and the first two haven't had any issues. This is an ASA-5506X HA pair, and it resides wholly within our perimeter firewall - there is no connection directly to the Internet. With this implemen...
Dear All I am not good in networking terms so please forgive if i am wrong. I am a application owner. Last couple of days my application got DDoS attack (as per my network team). But the problem is they can't block it in the cisco firewall (firepower...
We're are implementing 802.1X on our network. They want a generated CSR from our VTC endpoints(EX90's,C series and Room kits). My question is, can these endpoint generate a CSR or does a separate infrastructure device do that ie. CUCM,TMS,VCSThanks f...
When I buy the ASA5506–K9 I am just getting the hardware. I need Smartnet too. Do I also need a Firepower license? if so what part number?
Hello Everyone, I'm setting up a lab with a Cisco 1941 router and I'm practising with Cisco IOS Zone-Based Firewall. There is enough documentation about how to set it up but not really on best practises regarding the implementation of policies. Does ...
Resolved! Cisco ASA TCP RESET
Hello Experts!So i have a problem that the server has tcp reset flag. My customer want to know is there any way that the cisco ASA reset the tcp connection? In my understanding that the asa will reset the connection when the tcp session is idle for 1...
