Hi AllAbout a year ago, DNS security via the Security Intelligence section stopped working when the Secondary HA ASA becomes the active firewall (which happens frequently due to module monitoring at the Asa level and weekly deployments resulting in ...
Hi Does anyone have a suggestion on how to trigger an email alert when the DNS Policy results in a DNS Block?I had a look at Correlation rules and then alerting off that, but there is no category for DNS Malware.
Hello Folks, I have a Cisco ASA that was given to me by a company that went out of business. I have repurposed this ASA in my lab environment for testing different features of the ASA. I am trying to figure out how to license the FirePower inside th...
Hi All, I have cisco ASA as standby unit and there are two IOS version on it. 9.5 and 9.8. I use 9.5 between active and standby unit but suddenly standby unit is restart and IOS version changed to 9.8. Is there any suggestion for this situation? i wa...
Having issues with my VPN configuration. I have a couple of servers on prem and a couple in Azure. It worked fine until I added the following commands:access-list TIMECARD_WS standard permit 5.5.5.5 object network vpntestsubnet 192.168.0.230-192.16...
Hello to all, There is one answer right, i marked my choices in green because i dont sure. please advise what is the correct answer and why. 1. which cisco technology is often used to create VPN tunnels between sites?a.catalyst switchb.cisco routersc...
HiI have a FTD with one Outside interface and a Interface on a MPLS network. By default, all traffic is passing the outside interface. Traffic to an other site is routet through a S2S VPN. Everthing works fine. But if the Internet goes down (also VPN...
Hello Folks, I am running into an issue where I cannot touch / connect with any networks that are not directly connected to the ASA from the WAN interface. However, if I am connected through SSL VPN or connected to one of the networks hosted by the ...
We are planning to use PPPoE on FTD interface to connect to Internet. The IP we get is randomly assigned by service provider and may change periodically. Is there any way we may get the (PPPoE) IP change notification(& the new IP) in FMC every time i...
Howzit Legends, So finally after 3 months of a massive learning curve on Firepower, I was able to replace our internet PANs with Firepower. So far there has been a couple hiccups, though we are getting through them. One that i'm unable to find any ...
I am petty sure I am hitting bug CSCut04399. Since I have upgrade my MacBook to Java 8 ASDM stalls every time I get logged into it and it begins to load the configuration. The Bug list no work around's but I have to believe by now, with the industry ...
Hi There,I upgraded Java to v8 and now the ASDM launcher will freeze. Which version of Java is ASDM version 7.4(2), Launcher version 1.6.0 compatible with? Thanks!
I am trying to implement Ipv6 on my network. From the FTD I can ping all zones and ping all vlans behind the zone. I cannot ping from endpoint to endpoint across the zone. I do not see any blocks or allows in the event list. What an I missing?? James
Hello friens I hope you are good. People I need to make a static Nat for both flow direction inside a VPN Site to site. This is the configuration nat (interface inside - interface outside) 1 source static A.A.A.A B.B.B.B destination static Z.Z...
