We had all our 6454 fabric interconnects running firmware version 4.2(4a) flag this vulnerability during a Nessus scan; OpenSSH < 9.8 RCE. Does anyone know how to remediate this or if there is a workaround?The version of OpenSSH installed on the rem...
Forum Posts
I am trying to create a Malware and File policy but then I attach that to the Access Control Policy I get this warning "File policy rule targeting application protocol 'Any' may never be triggered due to Application selection 'HTTP/2"If I remove the ...
Hi Everyone,I want to configure Syslog TLS for Cisco 2960X with OS version 15. X.X. Can anyone tell me the upload certificate in the Cisco switch generated by the syslog server?What will be the certificate extension format that Cisco will accept like...
Hi,is there any supported way to add more than 50 entries to the Control-Plane-ACL on a FP1140 Device? It's quite anoying to add every entry one by one in the FMC and it's limited to 50 entries.Thanks
What is the process for exporting the dap file from ASA, I believe I have missed this step when creating my RAVPN configuration
Resolved! SF Data Collector showing "waiting"
Hi, I have a new firewall which is showing "waiting" on two processes.. how do I resolve this?
I have a firepower 1140 and I wish to see debug messages in the CLI. I ssh in, enable system wide logging, then run debug tcp. after I go into the support console with support diagnostic-cli. Exactly one time I have seen debug messages but not sin...
We currently have two Cisco C9407R core switches, two Cisco FTD 2130 perimeter firewalls, and two Cisco routers. The DHCP services and routing tables are managed by the core switches. We plan to introduce an internal firewall between the perimeter fi...
can I copy paste objects directly into the diagnostic-cli (exec mode) and have fmc read them? I want to mass add about 100 "host" objects and 100 network ranges. It's a snap to do it in the ASA in the cli, and thankfully I need the same 200 in firep...
Hi, We are currently using 7.2.8-25 and want to upgrade to 7.4.2.1-30 (latest). None of the bugs available would do any effect in environment and we are using the FDM. Anyone have any opinion on either of the releases? One more buggy than the other? ...
Resolved! access list on nexus 3000
helloI want to write an access list on the nexus 3064 switch so that an IP range on this switch can only be accessed from a specific source, can anyone guide me?My servers are connected to a 2960 switch, which is also connected to the Nexus switch, a...
Resolved! Cisco ASA 5520 no internet access.
Interface Name IP address Subnet mask MethodGigabitEthernet0/0 outside 192.168.1.8 255.255.255.0 DHCPGigabitEthernet0/1 inside 10.1.1.2 255.255.255.0 CONFIGCurrent IP Addresses:Interface Name IP address Subnet mask MethodGigabitEthernet0/0 outside 19...
Resolved! ACL on VTY Line Blocks All Connections
I was on our ISR4551-X and I noticed the ACL we use for securing the VTY lines wasn't being applied on "line vty 0 4"... #sho ver | inc IOS Cisco IOS XE Software, Version 16.12.07 Cisco IOS Software [Gibraltar], ISR Software (X86_64_LINUX_IOSD-UNIVER...
Resolved! ASA Help With NAT for Printer
I have a Guest network for internet access for guests and an Inside network. I would like the Guest network to be able to access a printer on the Inside network.I have the following configuration:object-group network Guest_Network_Printersnetwork-obj...
| User | Count |
|---|---|
| 10 | |
| 7 | |
| 5 | |
| 2 | |
| 1 |
