Network Security

Identity firewall how tu configure samba for proper handling netbios probes?

I have a network with active directory domain and RedHat IDM domain. The one way trust establihed between domain.Ad users can login in Linux Workstations. Active director have installed agent. Windows workstations works fine. On linux machines netbio...

ASA 106101: Number of cached deny-flows for ACL log has reached limit.

Hi,we are trying to decrease the number of deny logs logged in our SIEM.The approach is to disable message 106023 and to log only 106100, by adding "deny ip any any log" at the end of all access lists. This way we are receiving summarized deny logs i...

ASA 5510 start in black

ASA 5510 when connected to the electric current and starts to start it goes black.does not allow settingRegards

Correlation emails being spammed?

I created a custom correlation rule that basically says if you see any DNS (port 53) traffic that does not contain IP address ) xxx.xxx.xxx.xxx (our internal DNS Server) then fire rule and send an email alert (configured under alert section).The issu...

Resolved! ASA active/standby failover with mac address

Hi, I have 2 ASA 5512 appliances running version 9.14 and will be doing active/standby failover between them. I was wondering if the config I have planned for them is accurate and where I would add the virtual mac addresses for the Gi0/0 and Gi0/1 in...

Resolved! How I have to proceed on Fire Jumper Program Essential: Stage 2 FY 19

Hi support!I recent pass "Security - Systems Engineers - Essentials - Stage 1 FY19 (PARTNER ONLY)" but I do not known how can I proceed to the Stage 2.Thanks for your time

asa 5506-x , firepower /var is almost full

Hello! There are no backups, no old updates: /dev/vda7 38G 35G 675M 99% /var What can I remove to clean up some space? Thank you!

Cisco ASA5505 upgrade from 8.2(5) but interim 8.4(5) not available for download

Hi, I have a Cisco ASA5505 with old software 8.2(5) and i would like to update it, but the interim 8.4(5) is not available for download. Any idea? Can I go straight to 9.2.(4) or can I download the interim 8.4(5) from somewhere else? Please advise

Resolved! customer getting new public ip and routed to inside network through isp?

customer needs a free public ip for Cisco jabber , the problem he is out of free public ip on his outside interface range , is it possible for him to buy a public ip address from another range and let the isp point any traffic for this new public ip ...

ASA-4-405101: Unable to Pre-allocate H225 Call Signalling Connection for faddr

I am starting to see these messages on our firewall and it's dropping some Avaya connections. We are not low on memory nor we are doing NAT as these are internal firewalls only so I don't think the description from Cisco is valid for us. There are ar...

East - West Traffic for FTD

Hi Guys,Just want to check with you if it is possible to block east-west traffic in FTD? Those endpoints which are within the same VLAN or network.Thanks

ASA IPsec remote access VPN - limit number of auth retries

Is there a way to limit the number of retries a VPN user has to authenticate? I found the aaa local authentication attempts max-fail command but our ra VPN uses certificates for authetication so I am not sure if the max-fail command would work.

SLA Monitor on CISCO ASA

Hello team, What if we want to monitor a destination which is reachable through a Site to Site VPN? I have configured it by using the inside interface to source it, but unfortunately this is not working. Below my config: sla monitor 20type echo proto...

Resolved! FMC, 6.3.0 disable SSL hardware acceleration.

HI, I saw that in FMC, 6.3.0 it's recommended to disable SSL hardware acceleration. nevertheless , i did not find how to do it . I think I should use command : ssl-hw-offload disable on FTD directly. But it's not accepted, on which CLI menu s...

Multiple ASA Reloads

I am going to log a tac case the next time it happens, but I have had four ASAs reboot twice today at the same time, in different Data Centres. Crashinfo files are in the flash, but just wanted to see if anyone has seen this before? Note they are on...

Network Security

Forum Posts

Identity firewall how tu configure samba for proper handling netbios probes?

ASA 106101: Number of cached deny-flows for ACL log has reached limit.

ASA 5510 start in black

Correlation emails being spammed?

Resolved! ASA active/standby failover with mac address

Resolved! How I have to proceed on Fire Jumper Program Essential: Stage 2 FY 19

asa 5506-x , firepower /var is almost full

Cisco ASA5505 upgrade from 8.2(5) but interim 8.4(5) not available for download

Resolved! customer getting new public ip and routed to inside network through isp?

ASA-4-405101: Unable to Pre-allocate H225 Call Signalling Connection for faddr

East - West Traffic for FTD

ASA IPsec remote access VPN - limit number of auth retries

SLA Monitor on CISCO ASA

Resolved! FMC, 6.3.0 disable SSL hardware acceleration.

Multiple ASA Reloads

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

app-agent heartbeat is not in ASA 9.18

FMC Instance not registered with this management centre

Cisco FTD Migration from 4100 to 4245

My CSLU(Cisco Smart License Utility) can't login into Cisco.

same question, same issue, Intervlan routing not possible at FTD

FTD Software Upgrade - 7.0.4

Where is the FTD/Anyconnect/Cisco secure client Compatibility matrix?

ASA 9.14.4.24

FTD and FMC backup creating a sf-storage folder

Route Based VPN FTD