Hi all, When i try to install the FirePOWER software on Cisco ASA 5516-X and i issue the following command: ASASFR-boot> system install ftp://192.168.2.4/asasfr-sys-6.2.2-81.pkg It gives the following:Verifying 110Upgrade aborted When i ping the addr...
Forum Posts
We are working with a Firepower FPR 1100 series firewall in the main office and a remote location with a layer 2 switch. On port 2 of the firewall, we have a server with IP address 192.168.1.3. At port 9 on the firewall we are connected to a switch...
Resolved! ASA NAT Best Practice
Hi I am in the process of reconfiguring all the outside access rules and NATs as we are migrating to a new public IP range. My question is about the best practice when configuring the NAT and access rules. I want to only use manual NATs. 1) Should th...
HelloI exported an identity certifciate from an ASA 5585 (asa915-smp-k8.bin) - I essentially followed the steps in the post below: https://supportforums.cisco.com/document/12466681/how-export-asa-identity-certificate-through-asdmWhen I try and import...
I have firepower on my asa 5506-x,I have the Firepower Management Center working and recognizing the ASAIf I go to Devices>Device Management>(my device) and then choose troubleshoot, and then go to advance troubleshooting, I only get file download. I...
I'm just looking for information on the IOS zone based firewall in HA mode also running DMVPN and if its possible, supported and a good idea or not. I would prefer to use 2 HA break out firewalls for firewalling and DMVPN +internet on 2 ISRs dedicate...
can someone assist me why is showing private cloud during integration AMP with FMC Last login: Tue Feb 18 10:16:42 UTC 2020Server: 4.2.2.2Address: 4.2.2.2#53Non-authoritative answer:api.amp.sourcefire.com canonical name = api-vpc-1125033044.us-east-...
does an ASA 5506 support spanning tree ?i need to connect a ring to it on the external side
Dear all. we use network discovery and it works as expected. But today we faced interesting issue. When i looked at x.x.x.x ip's identity, it shows that current user is TOM, but we are sure that TOM's ip address is y.y.y.y. when we look at y.y.y.y it...
Resolved! Common Criteria FPR2100
Hi all, i'm finding it a bit of a minefield determining if the FPR-2100-NGFW is EAL4 certified (common criteria) https://www.commoncriteriaportal.org/products/ According to the CC site it is not, however this link from Cisco suggests that it is (but ...
Would like to apply policy based routing [policy-route route-map <route-map name>] on a BVI interface or physical interface in the bridge group for my INSIDE network, so I can be able to route certain traffic generated from the INSIDE network out on ...
Resolved! Cisco FMC with Azure Authentication
I have a question about FMC supports to Azure Multi-Factor Authentication. I think FMC supports RSA and Duo Two-Factor Authentication, but didn't find any valid source if it could work with Azure as well. Best,
hi,I have an ASA with DHCP on the outside interface and I am trying to setup a nat/pat for traffic hitting the outside interface on port 8443 to an internal IP on the same port. i am using obj nat per below but logs show traffic getting discarded.. ...
So I have an ASA with a site-to-site VPN setup to say, remote network 10.10.10.0/24. My inside network is PAT to the local VPN network of 55.55.55.55/32. I can create ACL on the inside interface that affect traffic across the VPN tunnel just fine. ...
Hi,I have a basic config for testing purposes, and it's currently working on another ASA 5506, I just made a backup from that working ASA, restored it to the new one and I'm having the issue of the title of this post.The thing is, when I connect the ...
