Hello All, We have an FMC 4600 Version 6.7.0 that manages all of our ASA SFR's in Production. We are wanting to build a two port port channel on the FMC and are not having much luck. I see articles about that it is capable, but there are no configura...
Forum Posts
Dear all,Background:1. In Malware & File tab, I´ve created a New Policy and I´ve added MSEXE type in it and I choosed Block Files in Action.2. I´ve added above New Policy in "Access Control", "Inspection" tab.3. My Access Control worked properly and ...
Hi everyone.We have two 4110 chassis cluster configuration in our large DC with FTD 6.4.0.9 appliance.Both chassis connected to core switch WS-C6509-EA few month cluster can work properly, then after maintenance reboot, they cannot join the cluster t...
Hi, can anyone advice me about how to get overall throughput or bandwidth of a customer network to to verify if my proposed ngfw 2130 with 10g uplink is able to match network overall bandwidth or throughput through one 10g link between network anf fw...
I want to test the native vlan using Cisco ASA. Does ASAv 9.9(2) supports native vlan? If yes is there any reference or configuration guide for it as i am not able find any guide. Thanks and Regards,Mohammed Fazil
Resolved! ASA Ping does not work
I have a Cisco ASAv connected with 2 c7200 routers in gns3, connected with inside interface and the other connected outside. The ip of interface inside is 11.0.1.1/24 and the ip of interface outside is 12.0.1.1/24Below is the ip of c7200 interface co...
Hello! We are preparing to install a 2110 FTD 6.2.2 High Availability pair (managed by an FPMC). 1. Is it possible to use a wildcard certificate? 2. If not, is it possible to use SANs? Each FTD has to have its own unique name, such as ftd1.<dom...
I am planning on upgrading my trusty 5506-X to a 5508-X and I would like to know if I can expect an interface performance improvement for the on device management option in ASDM. The 5506-X is quite slow, and I have gotten used to it, but if I am goi...
We have the rquirement from our management to use a four eyes principle (Admin1 makes a rule change, Admin2 has to approve in order for it to be deployed) so mistakes like one admin brings down the whole company with one misconfiguration can be avoid...
Hi All, I have recently built an ISE 2.7 instance and I am trying to configure TACACS authorization based on the Group the user belongs to. I can do this with an AD (External Identity Store). But when I try to do the same with Internal users and grou...
Hello,When using SAML for authentication on Cisco FTD and authorize only for secondary the username is masked out by the assertion token. Are there any attributes in the SAML token that can be used for authorization? Say, if I wanted to switch tunn...
Dear Community, I had a couple questions regarding the Security Intelligence piece of the Access Control Policy: 1) Is there a way to drill down into the Network and URL Feed Objects to see what IP's and URLs are actually contained within? For exampl...
While I was configuring my ASA 5506-X NGFW , the management IP address has reset suddenly and am unable to use the management web interface to configure the firewall. I tried to set the ip address using the command configure network ipv4 manual 10.30...
Resolved! Hide a subnet to another subnet - NAT
Hi An easy question for the experienced Cisco Community. I'm configuring an ASA5506 for a simple task. Yes, I know - it's old, but that's what I got right now. I need to isolate an IoT-subnet inside my LAN and I figured that the best way to do it, is...
Hello, I wish to update my ISR 4331's Snort virtual container using the community signature package. I understand the IOS commands to "configuring signature update from a local server", but I am not sure how to create the web page to post the signatu...
| User | Count |
|---|---|
| 10 | |
| 5 | |
| 5 | |
| 2 | |
| 1 |
