Network Security

Firewall Migration Tool v7.0.0.1 now live!

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...

Resolved! How to Install AIP Security Module

I recently purchased a Cisco ASA-SSM-AIP-20-K9 AIP Security Advanced Services Module from eBay and installed it into my Cisco ASA5540 firewall. It is shown properly, using the "show inv" command. I just need help in figuring out how to install the ...

Resolved! FTD (2110) routed mode with single interface in transparent mode

I am replacing my SonicWall with FMC(6.3.0.3)/FTD 2110's (6.2.3.13). And trying to configure a "transparent mode" interface. I am in Routed mode, 1/1 is my WAN (192.1.1.1/24), I'd like interface 1/8 to be in transparent mode DMZ, so I don't have to w...

Resolved! Query regarding FPR2110-ASA-K9

Hi All,My company has purchased Firepower 2100 series firewall with ASA image 9.10.1. My query is related to CLI and GUI. Is it the CLI Commands and GUI steps/view will be same as normal ASA and manage by ASDM. Any help will be appreciated

Using FQDN in access lists

Trying to determine how to properly configure FQDNs in access lists on an ASA5525 to always resolve for HTTPS from an internal network server VM application reaching out to them regardless of what ip address changes occur to each domain name over tim...

Password Recovery ASA - HA Fail-over pair

Hi All, We have a HA Failover pair of Firewalls at different Data centers - A link is there in between where they are forming HA. Somehow we have lost management access to those firewalls now. Can someone please advice how we can break the passwork ...

Resolved! SNMP Configuration on 5506X FTD

using FDM to configure the FTD, dont see any option where i can configure SNMP. do i need to use Flexconfig to configure snmp. I'm using data interface to manage the device. Management interface not in use.

Unable to login to WebUI

Im trying to login to my Defense Center thru the WebUI, I'm able to do so but after a few seconds it logs me off What could be cause this issue?

Cisco Firepower 2130 Feature Support ?

Hi Techguys,i want to confirm the VRF Support in Cisco Firpower 2130. I have requirement for different connections from Partnet. I want to keep all partner information separate. i want to keep voice, Internet and Partners VPN in a seprate VRF. Pleas...

ASA and uploading with SCP

I have a bunch of ASA's which I want to backup.My goal is to use the "backup" command with a SCP location:"backup /noconfirm location scp://<username>:<password>@<SCP-server-IP>/" The backup is performed, and a SCP session and filecopy is started (ac...

Resolved! Cisco ASA connecting to Office 365

Hi everyone, I hope someone can help me out here. I have an IPSec tunnel set up between a Palo Alto and Cisco ASA. The tunnel is up and running and is passing LAN/WAN traffic. So far so good. On Thursday, the users on site were migrated to Office 365...

internal static route

I have a firepower 1010 I am trying to configure for a customer. It is going in place of a router that is there now. internal ip for example on firepower is 192.168.1.10 and this is the default gateway for all computers then we have another router ...

Unable Perform Snort ISR Signature Updates

I am unable to update my ISR 4331 IOS-XE 16.6.4 Snort IPS signature from the base 29.0.C. I have also tried the latest signature (UTD-STD-SIGNATURE-2983-71-S.pkg) and receive the same error message. No issues contacting the HTTP server and copying ...

Resolved! VPN between ASA and Fortigate

I have an issue with a VPN between an ASA 5515 (9.1(7)29) and a Fortigate 501E (5.6.8). We have the Cisco ASA and the customer has the Fortigate. Both are configured to have an L2L VPN between them. The VPN is up and we see traffic being encrypted an...

new firewall shifting and clear arp

im shifting a new fmc+ftd instead of an old asa firewall , i was wondering after i shift the new fmc+ftd with the same inside and outside ip addresses if i need to clear arp my layer 3 core switch and my isp router?

nat-xlate-failed) NAT failed

For the life of me, I can't figure out what is causing my NAT problem. I ran a packet trace from 10.0.0.1 to 8.8.8.8 and received "(nat-xlate-failed)NAT failed" message. All I'm trying to do is to allow any host from 10.1.1.5 subnet to go out to the ...

Network Security

Forum Posts

Firewall Migration Tool v7.0.0.1 now live!

Resolved! How to Install AIP Security Module

Resolved! FTD (2110) routed mode with single interface in transparent mode

Resolved! Query regarding FPR2110-ASA-K9

Using FQDN in access lists

Password Recovery ASA - HA Fail-over pair

Resolved! SNMP Configuration on 5506X FTD

Unable to login to WebUI

Cisco Firepower 2130 Feature Support ?

ASA and uploading with SCP

Resolved! Cisco ASA connecting to Office 365

internal static route

Unable Perform Snort ISR Signature Updates

Resolved! VPN between ASA and Fortigate

new firewall shifting and clear arp

nat-xlate-failed) NAT failed

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

FTD SSE Connector Service down

Problem with ssl decrypt-resign on Cisco Sefure Firewall

FTD reboots and the active firewall losts all of the User ID entries

ASA AD LDAP Authorization belonging to multiple groups

Cisco FTD workaround for SSE connector failure stumbled on rights priv

Using FlexConfig to change default command (no sysopt noproxyarp) rule

Trying to enable AnyConnect Alias

EU compliance certificate Firepower 1010 NGFW

Firepower 1010 readiness check stuck at "Please Wait"

OpenSSH regreSSHion vulnerability in FMC