I have a hub and spoke environment with a bunch of ASA 5506-X devices. I was under the impression that for a site-to-site VPN between a user (behind a residential internet connection) and my public IP hub ASA, that the private space ASA would require...
Forum Posts
Resolved! ASA SSH to outside interface times out
Hello everyone, I did search thoroughly for this specific question and could not find an answer. I am sure it is out there somewhere but if someone here could help me out, it would be greatly appreciated. I have numerous ASA 5506-X devices in a hub-a...
Hi, I need to contact a remote LDAP server via the inside interface.this remote LDAP server is reachable via an IPsec tunnel and due to network overlapping we are natting source addresses before they passthrough the VPN.Is it possible to nat the insi...
Hi all I've got a new ASA Firepower which replaces an other old ASA. The old one has various IP Audit Policies configured, but I think for legacy reasons. What is the default today in regards to IP Audit? Is this enabled by default or not? What are...
Hello I can not filtering more then one SID in intrusion policy. Can I search multiple SID? I have tried , : AND nothing worksalso can I select more category in one filter ? thank you for help Radek
Resolved! FPR4140-NGFW-K9 vs FPR4140-NGIPS-K9
Hi I have a question about difference between the following products: FPR4140-NGFW-K9FPR4140-NGIPS-K9FPR4140-AMP-K9 I want to order the 4145 Firewall, but in "built and price" there isn't FPR4145-GFW-K9 part number.is FPR4145-NGIPS-K9 the same as FPR...
Hi Today i found out that ASA5545 CPU went to 60% and it was all consumed by the DATAPATH-0-2326 process. I could lower it to 30% by removing a capture process that wasnt removed by ASDM after the program close.The average CPU usage three days ago wa...
Hi,ASA 8.3Anyconnect users can reach INSIDE, but not DMZ. Dmz host 10.120.1.2 is what I am trying to reach.Packet-tracer shows it should be possible. Attaching my asa config.What am I missing?¨Packet-tracer:asa-kalasa# packet-tracer input vpn tcp 172...
Good day all, Currently we have deployed Cisco FMC 1600 with FTD 1020 and 2100 in HA respectively. We are running version 6.4.0.4. The FMC has been configured to sync time via NTP and is showing the correct time. The FTDs have been configured to pu...
Hi everyone!After upgrading FTD to 6.5.x on a ASA5508-X I keep strugling with the CLI jumping to the top of the scroll when using arrow up etc. Sometimes CLI will scroll to the bottom when starting to type a command but most of the time i need to man...
Hy guys I have the following scenario and problem ASA 5516-XCisco Adaptive Security Appliance Software Version 9.6(1) <context>Device Manager Version 7.6(1) Escenario:I have a connection with one of our clients through VPN L2L with 2 different IPs, t...
Dears , i want to resctrict the access to VPN IPsec remote access to some public addresses .can i do that with asa ASA5512 version 9.1 ??
how to enable traffic inspection in 5516 model firewall. also how to integrate it with Symantec tool
dear All,I have Cisco 5516 and i want to enable traffic inspection , so do i need separate Firepower threat detection device or we can enable it in existing 5516 firewall as well. if yes how to do ?also we need to enable URL filtering as well.Then we...
Hello,A customer's ASA is presenting the System LED flashing red.I have already analysed the show tech-support and show environment output: Found nothing, everythink seems OK.They are not experiencing problems with the appliance.Do you have any tips?...
We have converted a new 2120 from FTD to run in just ASA mode, but I can only seem to use ports mgt 1/1 and Eth 1/1 & 1/2.I did read somewhere that if the devices is in platform mode -Platform mode—When in Platform mode, you must configure basic oper...
