Our production network is 172.16.4.0 255.255.252.0 with a usable IP range of 172.16.4.1 to 172.16.7.254. We want to block any IP from 172.16.7.1 to 172.16.7.254 from sending outbound SMTP traffic. I'm fairly sure this is the correct ACL rule using an...
Forum Posts
Hi, What is the difference between sourcefire and NGIPS? is it the same thing?,,
What is the difference between Sourcefire 3d system and Firepower NGIPS ?
Resolved! ASA 5505 lost connection to Firesight
We have a VMware Firesight server in one office and 3 ASA 5505 appliances. I made a configuration change on the Firesight server by adding a DNS rule that ended up blocking the connecting from an ASA in a remote office from the Firepower management s...
Hello,I have a proxy server on my corporate network and a proxy server on my dmz. Users on the corporate network get passed over to the dmz before they go out to the internet. If I use the internal proxy for some webex sites it fails. However if i ...
Successfully deployed an Exchange hybrid with our on-prem exchange 2013 dag....to an extent. I can mail on-prem to E365, but when trying to send from E365 to on-prem, my ASA5515 is blocking due to an rpf-violation. Mail flow originates at our outboun...
Hello! I would like to configure two trunk ports on Cisco ASA 5506-X for Cisco Access points. I have two BVI interfaces for two VLANs (1,10). When I'm trying to configure the second one I receive an error: ZAVAS-GW(config-subif)# interface GigabitEth...
Hi All,Tried to find a proper cisco community section for this question. This seamed like the best place. Please move the post in case it isn't.I'm looking for a used but still decent Cisco ASA or another Cisco Firewall solution. Any recommendatio...
Hi all. I would like to know if there is a way to enable of sending logs only for selected network ranges that are traversing our FTD firewall? Maybe using an ACL somewhere that will define for what networks we want the logs sent? The reason for this...
hello to everything, I have a query, I would like to know if there is a way to change the expiration date of identity certificates on a 5585-x handle since at the time of generating it it generates it for 10 years and I need it only for 1.Thank you v...
Hello, Looking at my blocked traffic I see some TOR exit node IP (23.129.64.159). Strange thing is, the initiator IP is my SFR module. It's NTP traffic. What's going on here? Why is my SFR module looking at a TOR node for time? I looked at my FMC...
Resolved! Cisco ASA Firepower management with ASDM
HI AllI Have a Cisco 5555-x with Firepower Services which is previously managed with FMC(with Cisco ASA5555 Firepower Control, IPS,AMP and URL Licenses). Now, I want to manage it with ASDM. when I connect to firewall via ASDM, I see only "ASA FirePOW...
Hi Team, I have a Vmware VDI Horizon setup and the servers are behind the Cisco ASA firewall. We provide public access to our VDI server and users are able to access our VDI environment without any issues. However, some users will connect Cisco Any ...
Hi All, I am currently implementing a pair of Cisco 4110s running ASA code in active/standby HA. Each 4110 will be connected to the LAN using 2 x 10GbE interfaces in a port-channel. I am going to connect a dedicated failover and state-failover link ...
