I need help please! We have an ASA firewall with multiple VLAN's configured. It is an old environment where we have servers configured with multiple NIC's with different IP addresses all in different subnets. We have a desktop VLAN, on the same ASA, ...
Forum Posts
I was running a TraceRoute to a remote server that goes through our new ASA5516x Firewalls, via a Private link to our Partner site, I know it is at least 5 hops in to reach this server, as we just migrated from our older 55xx EOL Firewalls, and could...
Hi Community Members, I am new to Networking and have a question, that appears difficult to me but to experts like you, it can be an easy one Our LAN Subnet: 192.168.171.0/24Our VPN Subnet: 10.251.251.0/24 Our client has allowed our LAN subnet (192.1...
Hello,I actually reimed a cisco firepower 2100 in asa.The problem is that when I go to create the port channels I can do it without problems but I can't associate the ethernet with the channel-group x mode active command because it answers me that th...
Resolved! ASAs and more-specific static routes
I had a situation with an ASA 5525-X running 9.6(4)25. There was a static route in place for (say) 10.1.1.0/24 out of one interface, e.g.route intf-1 10.1.1.0 255.255.255.0 <next-hop> A more-specific route was then required out of another interface e...
Hi, experts.After applying in the FTD a rule to block the Teamviewer application for the internal hosts to internet (INSIDE to OUTSIDE),I found in LINA this: FTD-5516X-XXX# show access-list CSM_FW_ACL_ | i 268434489access-list CSM_FW_ACL_ line 219 re...
Hi Folks, I have an internal server that does not run Apache, it can be reached from external via port 80/443. I get a malware event alerts for dropped traffic from Outside to Inside for an inside server that does not have Apache installed. I though...
Hi Folks, If I receive an inbound attempt from outside to inside and it triggers snort rule 45304 (oracle weblogic signature). How do I know if this is relevant regardless of whether it is (oracle weblogic in this instance) actually installed/listeni...
Hi, When Firepower IPS picks up a bad attempt from the internet inbound it blocks it and sends an impact 1 event to my alerting. I typically do not need to action much for such blocked situations. I'd like to set my alerting up for the other directi...
Hi AllDoes anyone know if you can filter out certain Subnet from turning up in Reporting?For eg, Guest wifi networks not appearing in IPS/CNC/Security Intelligence sections of reports? My goal is to only report on Corporate activity when using:Advanc...
Hi Everyone, I want to connect the ASAv to a SMB share in Azure for backup or file tranfer purposMy steps:Create files share within services: Microsoft.StorageGrant read, write, list, delete permissionsRetrieve accesskey (key1) and username from Azur...
Hi Everyone, I am getting the syslog message "User X executed the dir disk0:/dap.xml command" , every time i logged in to the ASA through ASDM. Can anyone explain why I am getting that message? Note: The same sys log message is not showing when i co...
Here are some access lists and NAT rules to access into cameras from outside. But I need access lists and NAT rules to access to cameras from inside network, because with these rules below cannot see the cameras from LAN network. I need any help pls?...
Hi, I'd like to poll for CPU related information. Can I use SNMP to gather data?Does the 8350 support SNMP? Does it support SNMP V3? Or, if not, is there a way to poll data from the Firepower Management Center? After looking ta doc I see this info: T...
Hi all,I am trying to log a support ticket on the Talos intelligence portal. Although when I click on Submit Ticket, I do get a message telling me the ticket has been successfully logged but when I check in "My Tickets" there is nothing, nowt, blank,...
