Just wanted to know how can I summarize individual ip routes from user vpn to a summary route to upstream devices.
Forum Posts
Resolved! DNS only works on one host?
So, I had DNS working, and I started putting FQDNs in ACLs. All were working and populating "show dns". Then I rebooted the firewall a few weeks later and now it's not resolving most hosts - saying they aren't active. The below code is partial and I ...
Greetings! I am very new to NX-OS, and it has been an uphill battle getting everything working. My current issue is that I cannot get my aaa shared keys to encrypt. They are set on level 7 but when I perform a show run, it shows in clear text on mos...
I'm currently trying to configure syslog on an ASA to send logs to a server via the outside interface. However, I'm facing an issue where nothing appears on the server. Are there any specific considerations or tips for setting up syslog on the outsid...
Resolved! ASA Syslog from Outside interface
I'm currently trying to configure syslog on an ASA to send logs to a server via the outside interface. However, I'm facing an issue where nothing appears on the server. Are there any specific considerations or tips for setting up syslog on the outsid...
Can we create VRF on onprim FTD 3110?
Hello everybody,our customer is using FMCv 7.2.5.1 and (two) Firepower 1120 (7.0.0.1)for their S2S tunnels (see screen dump). We changed a IKEv1 to IKEv2 tunnel (peer-IP 217.6.229.234). In the VPN > Site To Site overview this working tunnel was displ...
Is there any chance that Geolocation will ever be available for use in prefilter rules? What I would like to do is have a prefilter rule that will exempt certain subnets from undesirable locations - just analyze the traffic and pass onto the ACP, and...
Resolved! Migration tool using a proxy
Dear community, I’m trying to use Cisco’s migration tool to migrate an ASA config to a FTD but I’m facing issues running it. Indeed, it tries to reach out cisco but it fails: 2023-12-28 14:35:21,125 [INFO | common] > "proxies : {}" 2023-12-28 14:3...
Resolved! FTD (FDM managed) API Version
What version of cisco devices started allowing the use of the API? I have a few ASA5506 version 6.2.3.18-50 and when I try to login to the API, all I get is a 401 unauthorized error.
Hello I am attempting to figure out an odd Inbound ACL issue where for some reason none of the traffic that is going to a VLAN is not matching any of the subnets (In the case for the two I am testing they are coming through the edge firewall first th...
Hello.For IDS/IPS inspection, the enterprise will be installing at approximately 15 branches, physical firepower ASA devices. These will be monitored by Firepower Management Center (aka Firepower Management console) (FMC).I need to determine if is fi...
Scenario - 3850 Fiber Distribution switch that feeds 5 locations. Ports TE3/0/1-TE3/0/5 go to buildings 1-5. Port TE3/0/12 is the uplink to the Core switch which then connects to my router. This is a flat network topology with a subnet of 172.16.0...
Hi, I have a 4 FTD FW ( 2 FP2130 & 2 FP 2110 ) managed by FMC v 6.5.0 I have 4 critical health monitor notification ( threat data updates on devices cisco cloud configuration - failure ) at each FWI don`t know what the meaning of this notification a...
In the past I've used the separate installers for AMP, Anyconnect VPN, Umbrella, etc. Now that we have the new unified Cisco Secure Endpoint installer, I can update user's machines tp the new versions via SCCM and the setup.exe file with the --quiet ...
