Network Security

Cisco ASA5545-MB Upgrade to support Firepower Services with IPS.

I have Cisco ASA5545-MB running in Active-Active Failover in DC. I have got task to upgrade this ASA to work with Firepower Services and install IPS on it. There are some challenges which I would like to overcome:-1) Do I need to remove the IPS legac...

Multicast Routing Group Status is not Normal

Hello, Monitoring Team has reported that the Firepower Devices in the environment are reporting the following alert : "Multicast routing group status is not normal" Need help in understanding what might be causing this alert and how to remedy it .Tha...

Audit Log Trail from Cisco ASA

Hello, I need help in understanding the audit trail in Cisco ASA.How can i cross check if audit logs are being generated in ASA and are being forwarded to syslog server correctly

ASA Tracked route w/ VPN Backup

Have a basic setup w/ a e-lan circuit that terminates on a subinterface of the ASA w/ a /29 defined. The ASA and the remote firewall each have an ip in the /29 and ping the far end device to see if that link is good. On the ASA i have the following...

Resolved! ASA 5510. VPN Tunnel. UDP traffic.

Hello! Friends! I need your advice. I do not have ideas. May be you can help me.So a have two offices (office 1 and office 2), for it connecting i used cisco asa 5510 and VPN between it. (site2site)office 1 - 192.168.101.0/24 office 2 - 192.168.104.0...

Can't see CISCO ASA 5516-X FirePower services module in ASDM.

Hello! I've run to the situation, where i configured my ASA completely and left the licencing for the last step and apparently i could not licence it because of non-existent FirePower Services module in ASDM, where i'm supposed to obtain the licence ...

How to monitor disk utlization on ASA firewall , which oid provides these details under which MIB file

Hello All,i am trying to monitor below ASA firewalls and want to know the oid which will give the disk utilization status when polled. which MIB file will have the SNMP oid for this.ASA5506-XCISCO ASA 5508Cisco ASA 5525Cisco ASA 5545 regards,Prasad

FMC Deplyment

HI All,We have ASA 5516x with firepower in HA at two different location and we are using virtual FMC at branch level. Now our requirement is to move FMC in DC(other location) and add both location firepower.I have some query to perform this activity:...

Resolved! How to check standby Serial No from Primary Firewall

Hi,How to check Standby serian no (Activie and standby) from Primary firewall console ?Without connect console to secondary fireall ? how to check this from primary firewall ?thanks in advance ?

Resolved! Rule on ASA to allow syslog traffic?

So if you have a syslog server on inside network/interface of ASA, and have an IDS/IPS on Outside of ASA you want to send its logs to the server, you should allow the mgmt IP address of the IDS/IPS if it is setup for syslog forwarding via its mgmt in...

Resolved! ASA5508 cant see block traffic between router subinterfaces

Good Day,Im currently having an issue where i have my sub interfaces configurated on my router. I also have an ASA5508 that i am using to control traffic. The asa can block traffic between the outside(isp) and inside(internal vlans) with no problem. ...

Resolved! ASA Cluster: Replace SSP modules

I have 2 ASA 5585-X SSP 40 cluster installed with Oldser generation IPS-SSP-40 modules. The IPS modules are used only for their 10 gig interface capability for the data path, without being used for any IPS functionality. The 10Gig Network Interface o...

SNMP trap configuration

SNMP trap configurationHi,I am attempting to configure SNMP traps for Power Supply failure, Critical CPU temperature, Fan failure on my ASA firewall.When I enter the command "show run all snmp-server" , I get this output: "no snmp-server enable traps...

error pool overlapping with the existing Pool.

Asa version 8.3.(1) . Hi,I am getting the error pool overlapping with the existing Pool. But I don't know why it is giving the warning interface GigabitEthernet0/0nameif Outsidesecurity-level 0ip address 1.1.1.2 255.255.255.248 standby 1.1.1.3 obje...

FTD HA Lunch readiness check option for upgrade

Hi,Anyone faced issue when following below TAC document on FTD HA upgrade ? , it looks like readiness check notsupported in HA configuration and a bug filed for the feature (CSCvm11203), but wondering why upgrade documentmentioning otherwise?FTD HA U...

Network Security

Forum Posts

Cisco ASA5545-MB Upgrade to support Firepower Services with IPS.

Multicast Routing Group Status is not Normal

Audit Log Trail from Cisco ASA

ASA Tracked route w/ VPN Backup

Resolved! ASA 5510. VPN Tunnel. UDP traffic.

Can't see CISCO ASA 5516-X FirePower services module in ASDM.

How to monitor disk utlization on ASA firewall , which oid provides these details under which MIB file

FMC Deplyment

Resolved! How to check standby Serial No from Primary Firewall

Resolved! Rule on ASA to allow syslog traffic?

Resolved! ASA5508 cant see block traffic between router subinterfaces

Resolved! ASA Cluster: Replace SSP modules

SNMP trap configuration

error pool overlapping with the existing Pool.

FTD HA Lunch readiness check option for upgrade

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

FMC Unable to Join CSSM On-Prem

Fixed: "show conn flow-rule qos" gives Syntax Error: Illegal parameter

ISA 3000 I/O contacts for red light kill switch ?

ERROR(567): No database files are available on Cisco Security Manager

CSSM On-Prem with FTD on FMC

General steps to migrade to a new Cisco Firepower hardware model

GeoLocation IP Package Download In 7.4.2 FMC

FMC-ASA-SFR compatibility

FMCv Migration FMC2700

TX retries dropped packets