It might look like a weird question, but i actually have a experimental case for this one.Pretty simple:1. Let's say i permit tcp/443 from anyone on the outside to PC01.2. Now i want to block specific traffic on the way back, so on the Inside to a sp...
We have ASA's in every office as the egress firewall for the Internet. We only allow 80/443 outbound but we receive many requests from staff to access client sites that include a random port (ex. www.xyz.com:8080) so we have to add a firewall rule ea...
Hi, We have an ASA 5515 connected to the ISP router. Being a call center I wanted to prioritize VoIP traffic. First of all is there a need to do this. We have comcast pipe of 50Mbps which is more than enough. I had the firewall set up 2 weeks ago an...
Does the Sec Plus license include these three subscriptions ( IP, AMP, URL Filter) ? Also can thee license L-ASA5506-SEC-PL ASA 5506 Security Plus - be applied to any of these ASA PART#s: ASA5506W-A-K9 or ASA5506-X or ASA5506H ? Thanks!
Hello , We seen the both FPR2110 becomes active-active suddenly.it was working fine in active-standby fail-over. we have used direct ethrenet cable for cross/sync link between to firewall. FPR2110 IS MANAGED BY fmc. Also seen the CPU utilization pri...
I have this FirePower that continously power cycles am not sure what has failed I have tried software recovery but which worked but after reboot, It still power Cycled.I cleaned the the file system as per cisco documentation with init system command ...
Hello Team, Today I working with Cisco TAC on SSL Decryption with SafeSearch. We did not apply the SSL Policy to our SafeSearch policy that was created with the fear of disrupting internet access. In the past when I applied the SSL Policy it would bl...
Good Day, I have a situation where I am using ASA in a non-standard way. I have run into behavior that I do not understand and hope that someone can explain to me. This is a sample topology of what I am dealing with: The "dmz" interface is not a rea...
I was able to setup my Cisco ASA5540 for Internet access from inside servers to the outside (i.e., I can hit websites, and ping hosts to the outside, and I can ping the inside hosts at their IPs from the firewall), but I cannot figure out how to allo...
Hi, I am trying to configure TACACS on management interface of ASA. I can ping the ISE servers from management interface. aaa-server ISE-SERVER-GROUP protocol tacacs+aaa-server ISE-SERVER-GROUP (mgmt) host 192.168.10.10 timeout 5 key *****aaa-serve...
I am configuring a Firepower 2120, using an ISOLATED network (no internet access). All I have is the console connection. Can I use the FXOS CLI to enable interfaces, so that I can build and test it before shipping to a remote location?
Firepower User Agent 2.3 installed on Windows Server 2012 R2 (clean install) SQL Server Compact 3.5 SP2 32-bit Installed SQL Server Compact 3.5 SP2 64-bit Installed .NET Framework 4.0 not required due to OS version Added into FMC All is fine until I ...
Hello, I am running/using Cisco FMC 6.2.13 virtual appliance. Recent vulnerabilities Nessus Scans recorded one High Vulnerability that ask me to update OpenSSH from current 7.3 version to 7.4 and several Medium Vulnerabilties that ask me to change th...
I want to know, is there any option to export the rules from Prefilter and Access controller policy to excel format? FMC Version is 6.4.0 Appreciate any inputs..
