Network Security

Resolved! Cisco ASA5515-X SSD

hi,i got a spare ASA5515-X but no SSD installed. i would like to convert the ASA to FTD to get hands on lab and prepare for possible FP/FTD HW upgrade soon. which one should i order: ASA5515-SSD120-K8 or ASA5515-SSD120-K9?is it one has FP OS installe...

Resolved! Eventough known Wireless SSID and password

Dear Support team and all,We are planning to install ASA 5506W-X at remote site internet connection but some of other 3rd users are working ins same location.My question, anyone knows SSID and passcode do not access to network and internet.How do we ...

Help please. How to configurate AnyConnect VPN for employees in this scenario??

Hi everybody; We want to configure Cisco's anyconnect service to offer around 50 VPN employees to connect to our offices. The problem with what you can see in the topology is that employees must point to one of our Public IP's to link to our datacent...

Resolved! Traceroute from Host behind Cisco ASA 5505

Hello all,I'm trying to perform a traceroute from a host behind ASA 5505, but i cannot see any path:C:\Users\Stef>tracert -d www.google.comTracing route to www.google.com [216.58.207.36]over a maximum of 30 hops:1 * * * Request timed out.2 * * * Requ...

Resolved! ACL on ASA for NATTED IPs

Let's say on as ASA there is an object nat statement such as in which nattedhosts is a 10.10.10.0 /24 subnet."ojbect network nattedhosts"nat (any,outside) static interface To create an ACL to allow ANY traffic to communicate with these hosts say por...

Resolved! Odd crypto-map behavior

Our IKEv2 VPN is showing some very odd behavior. We have two devices our end that need to be seen as interesting traffic, they are n.n.8.4 and n.n.9.4. When these were configured I put in 8.4 first followed by the 9.4, the tunnel came up, traffic pas...

IPSEC Logs

So if an IPSEC tunnel on ASA is down, only traffic I see in logs show IKE Receiver received on (IP of our local FW) from the (Peer IP of tunnel) but no IKE Response messages are sent back from our Firewall. Shouldn't I see this type of traffic in the...

Cannot Ping to Backup Wan on ASA 5505

Dear all, Currently i have 2 wan internet connection and i'm using sla monitor for Active and backup. and it is working fine when the Active down , the backup link will switch to Active auto. my issue that i want to monitor ( ping ) on Backup connec...

Bridge Groups using Easy VPN - 5506X

Hello, I'm trying to configure a bridge group for example: interface BVI2 nameif inside security-level 100 ip address xx.xx.xx.xx xxx.xxx.xxx.x interface GigabitEthernet1/2 bridge-group 2 nameif inside_2 security-level 100 interface GigabitEth...

VPN and DHCP

have an issue. I have a Microsoft DHCP server behind a context firewall.My VPN clients come in through a different firewall (5510). I need to have them pick up a DHCP address from the appropriate scope. This works if the DHCP is defined on the 5510 ...

PIX 7.2(4) Docs

HelloMy 1st post...the colors are AWFUL/atrocious here. I remember when white on black was the 'in' thing...Anyone know where I can DL PIX 7.2(4) docs, in HTML, NOT pdf. I hate pdf's as I cannot edit them to add notes, I cannot create links within t...

Resolved! Firepower 4100 ACP rule not working?

Hi,I have rule 23 that allows all private IP address (IPv4 RFC1918 group object) to use ICMP and use TCP port 49 for TACACS+ to a specific IP (let's say 10.10.10.31). This rule seems not to work as I get the below result from a packet tracer on the F...

ASA netflow export into VPN tunnel...

I'm trying to configure netflow exporting through a route-based site-to-siteIPsec tunnel on a Cisco ASA 5512 V9.9 device. Neither the CLI nor ASDM will let me select the VTI as the interface to use for the netflow collector. Is Flexible Netflow requi...

Resolved! Snort Scripting

Hello Is there a way to write custom SNORT rules (for IPS) and OpenAppID scripts(for a new Protocol or an APP) and use them in FTD or Firepower Services?Links would be appreciated.

Resolved! FTD/FMC host limitations for DHCP v6.3

When using the ASA as a DHCP server, it is limited to 256 hosts. Does the FTD have the same limitations? The mask can be 255.255.255.0 or smaller. Thanks in advance!

Network Security

Forum Posts

Resolved! Cisco ASA5515-X SSD

Resolved! Eventough known Wireless SSID and password

Help please. How to configurate AnyConnect VPN for employees in this scenario??

Resolved! Traceroute from Host behind Cisco ASA 5505

Resolved! ACL on ASA for NATTED IPs

Resolved! Odd crypto-map behavior

IPSEC Logs

Cannot Ping to Backup Wan on ASA 5505

Bridge Groups using Easy VPN - 5506X

VPN and DHCP

PIX 7.2(4) Docs

Resolved! Firepower 4100 ACP rule not working?

ASA netflow export into VPN tunnel...

Resolved! Snort Scripting

Resolved! FTD/FMC host limitations for DHCP v6.3

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

ISE licensing post upgrade

Cisco FTD Migration from 4100 to 4245

My CSLU(Cisco Smart License Utility) can't login into Cisco.

same question, same issue, Intervlan routing not possible at FTD

Migrate from FMC virtual 300 to FMC virtual

FTD and FMC backup creating a sf-storage folder

Route Based VPN FTD

Multi instance 3120 FTD - Each instance in different FMC Domain

FDM DHCP Relay

Need expert help with Firepower intervlan routing