Hello all--I'm trying to configure an ASA transparent mode service insertion into an ACI fabric using PBR. I believe I have all of the config on the ACI side done correctly. That is, I have no faults on the tenant and when I go into the inventory, ...
Forum Posts
Hello! Friends! I need advice.I have FirePOWER Appliance 7010. It very old version (5.4) I want to upgrade it for version 6.4So.1.How I understand the best way - restore from ISO and configure it. Is it right?2.What need I do with Firepower Managemen...
Resolved! Visco Stencils for NGFW 1000 Series
Hi is there any aware if there is a visio stencils for ngfw 1000 series thanks at advanced
Resolved! ASA Context Failover Alerting
Hi, I am just wondering if it is possible to monitor the failover of an ASA in multiple context mode, and even more finely tune that monitoring to include specific contexts failing over to a standby ASA? I am thinking syslog is probably the most like...
I'm trying to tftp files from a ASA 5506 (dynamic side) via a dynamic-to-static IKEv1/IPsec tunnel to a 5515X ASA (static side) to back up the running config or send an updated version. Tunnel is up and I have full reach-ability to all the networks a...
Hi, Say an ACP rule allows a LAN IP from inside to out and has inspection turned on. Does Snort only inspect the outgoing packets or does it also inspect the return established traffic? Thanks.
hi Marvin/team, I will be implementing an AMP4E solution for the centos server.I need to know what kind of prerequisites from the customer end.is there any kind of port that needs to be open on the running Firewall?can you provide a stepwise document...
Hi, I have a WS-C3650-48PS IOS 03.07.04E cat3k_caa-universalk9. The following appears in a network security report: The host transmits UDP packets with a constant IP Identification field. This behavior may be exploited to discover the operating syste...
Hello, I stumbled upon this error when trying to add FMC as manager to the SFRgetPeersByRole: unable to connect to db at /usr/local/sf/lib/perl/5.10.1/SF/PeerManager/Peers.pm line 18 The situation is as follows:I upgraded the ASA. Then I started to ...
Dears i have topology as picture,i want do divide inside network as from IP (192.168.1.1- 20) get out from ISP1 and other IP (192.168.1.21-200) get out from ISP2i try the PBR with the help of FlexConfig in this video but not work.https://www.youtube...
Resolved! ASA 5545-X & 5508-X SFR Modules
Hi All, I'm getting slightly confused and wanted to confirm that these are indeed using software SFR modules i.e. there is no physical module therefore the physical resources are consuming what is on the ASA? So resources can be taken to compromise A...
Hi,I have asa deployed active standby . In my standby I don't have connectivity to DMZ interface due to lack of budget . Now the problem is , it shows active standby failure . Is it due to the missing connectivityor something else ?Thanks
Good morning all,It is the first time that I post on this forum! I need your help to resolve a problem that occurs after updating the firewall from version 9.7 to 9.14.1the firewall is an asa 5525. the problem is that, at random, a time is added to a...
Hi,Is it possible to configure HA cluster where one node has a link to ISP A and second node has a link to ISP B ? I'm aware of problems with routing configuration but for me it seems possible to achieve. Anyone did this ?
I currently have a ASA5525 that seems to be rebooting itself randomly. I believe this is similar to the old thread here Here are my "show tech" results which includes the crash info. Can anyone please offer some help to diagnose and resolve. ThanksMa...
