Hello - I need to change the IP address from 192.168.1.1 to 10.209.133.1 Also I see the unit is with BVI1 interface and the assign IP 192.168.1.1, The other interfaces is BVI also, do I need to change this prior change the IP address
Does the Cisco ASA have a user-id feature as in Palo Alto? Can you see the assoiation of user ip adddress and user names in the secrity/traffic logs? Thanks Stan
Hello, I am looking for verification that my configuration is correct to police all outside interface traffic to 150mbps. We currently are on a burstable link but we want to set a hard limit at 150mbps so we don't have huge monthly bills. Please see ...
HiAnyone got any idea why when i look at the Live logs on ASA 5555x they are all yellow and saying blocked obviously lots of traffic does get blocked but services were working so dosent make sense.??? Thanks
I cannot find any information about the End-of-life and End-of-Support for CISCO ASA 5508 Hardware Plattform.Does anyone know more information?
All,I have an ASR920 for internet routing. Management interface is on the inside and I have an ACL applied to lines 0-5 on VTY and applying to that Mgmt-VRF. This is working just fine for internal management access. I would also like to allow VTY acc...
Hello, I need a guide here. What is the best practice and the correct way to implement Firepower Policies/rues? We currently have the Firepower in production with no policies in place (all traffic passes through the Firewall without any inspection). ...
hi guys,slight confusion on Cisco NGIPS high availability and clustering.My devices are Firepower 4125 with fxos and planning to run FTD on it.Total 4 devices - 2 in DC and 2 in DRCan i do Active-Passive failover with devicessome documentations menti...
Hello. We are using route based VPN with IKEv2 on VTI interfaces on Cisco ASA, netmask is /30. Now we are planning on to migrate to Active/Failover cluster. Is it necessary to create a standby ip on a Tunnel interface or it will work fine without it?...
Hi, I would need some assistance on how to configure 2 outside interface. Each ISP (outside) interface have /28 IP Address and the other one is /30 IP Address. My intention is to put the servers behind the FW so each ISP is related to one of the insi...
Hello, We opened new branch ( A ) and successfully established site to site vpn tunnel with head office ( HO ).Head office ( IMI - HO ) already has site to site vpn connection with another datacenter which host application IFS.Problem is, In new bra...
Hi,I am having a firepower 2140 appliance which is running on ASA OS 9.x. Can I add a URL filtering capability to it. What would be the pre-requisites and licence required for the same. Note: We do not have FMC and we manage the device over CLI as of...
Delete this plz,Delete this plz,Delete this plz
ASA access to website via wan but not thru tunnel?Hello,We have an ASA that allows us to access a webserver (nat) when connecting to it on the wan (outside). We also have a pptp tunnel that goes thru the asa and terminates on another device on the in...
Hi Everyone, I have scoured the web and have nearly mirrored the setup as outlined here:https://community.cisco.com/t5/firepower/firepower-publish-internal-webserver/td-p/3672845 While following the guidelines for CISCO NAT rules. NAT works as expect...
