Cisco's Customer Experience (CX) Research is trying to learn more about customers experience with Cisco support cases and managing faults. If you are interested in talking about your experience with how you manage support cases and faults, please tak...
Hi Team,We need to configure NAT timeout value for traffic going from Inside interface to Outside interface on Cisco ASA firewall.Please let us know how we can achieve this? As i dont see any document for NAT timeout value but for overall timeout val...
Dears Please confirm the attached diagram flow will work with IPS inline mode, My goal is to inspect traffic before it reaches to server in DC , Device A is capable of redirecting traffic to IPS interface 1 on vlan 20 through switch after traffic i...
Hi colleagues, I have the following issue, I'm migrating from cisco ASA5510 to FRP1010e managed via FDM. The configuration is simple and I moved it to the new device(FRP1010e). I have configured one interface for OUTSIDE with public address and VLAN ...
Hi Guys, i have this issues "Smart License usage is out of compliance." ... what is the solution of this error Thanks !
We have run into an issue with an ASA5516-X device where we cannot issue new deployments. All deployments fail, creating an entry in pigtail deploy like this:NGUI: 04-01 19:59:51 ajp-nio-8009-exec-5: ERROR ExceptionHandlerAspect:48 - Managed NGFWApp...
how deep do I need to lear about Zone-Based Firewall . on the book OCG on page 435 and 436 , it is just have page. on the Domain 2.0 I don't find it . but yet on the exam I have couple question about firewall. any advice
I'm wondering if there is a way to remove ALL network-objects from an network object-group with one command. I figured the easiest way to do this is to negate the object-group and re-create it. If the object-group is used on a ACL it is not possibl...
How to I use the Real-Time Log Viewer in ASDM to search for XXX.XXX.XXX.1 and it not show XXX.XXX.XXX.123, for example? I want to see only the IP ending in .1, NOT the ones ending in .12, .11, .134, .150, etc.I have tried adding quotes, as in "XXX.XX...
Hello, for reasons of compliance we are required to syslog URL visited.With the config below (not full) I am able to see the IP visited, and this only for http.Is there a way to syslog the http and https URLs ?parameter-map type urlf-glob PERMITTEDSI...
Hello, Cisco Gurus!Anyone setup route-based IPSec tunnel on the same ASAv that hosts multiple policy-based S2S VPN's? Cisco says it's possible, but didn't provide any best practices. Specifically, we're interested in placing our internal sources (whi...
Hello Family,Hope you are well,Needed help figure out how to migrate IPsec tunnels from one FTD to another using Secure Firewall Migration Tool .What do i need to worry/cater for to ensure seamless migration - no downtime.Thank you.
Hello all,I am having an issue where I am getting a ERR_CONNECTION_REFUSED whenever I visit a website without HTTPS in the URL. I have narrowed it to the firewall blocking the traffic because the direct connection to the internet via the modem doesn'...
Hi All,I'm trying to allow traceroute through the firewall as per the below doc, however, when I update the Platform Settings to permit traceroute on Inside, Outside and another zone, SLA monitor which is tracking the primary ISP goes down and failov...
*Mar 26 18:52:38.403: %SSH-5-SSH2_SESSION: SSH2 Session request from 47.96.98.30 (tty = 0) using crypto cipher 'chacha20-poly1305@openssh.com', hmac 'hmac-sha2-256-etm@openssh.com' Succeeded *Mar 26 18:52:47.210: %SSH-5-SSH2_USERAUTH: User '' auth...
