I purchased a new ssl cert for my Cisco ASA 5506. I installed it and there was an exterior scan run against it. The scan failed. Here is the error:SSL certificate is untrusted How do I resolve these error?Any help is appreciated.
Forum Posts
Hello! "Cisco Firepower provides full contextual threat analysis and protection, with awareness into users, user history on every machine, mobile devices, client-side applications, operating systems, virtual machine-to-machine communications, vulnera...
Hello Guys I am trying to build a Route Based L2L VPN tunnel between my Cisco ASA running 9.8 Code and Azure CLoud.I have a Basic Idea on the Configuration of the Route Based VPN tunnel. But I would like to know is it possible to Configure ACL's in t...
I'm in the process of acquiring some new FTD's with FMC. But can't find a definitive answer as to whether the FMC can manage ASA configs & logging too ? The company has a large estate of 5525-X without FirePower & a few 5545-X's with.I'm trying to i...
Is there any safe way to test Firepower's IDS policy on a machine to see if the IDS policy is working? I know of the EICAR test for detecting malicious files, but is there an equivalent site we can go to for IDS testing?
Dear , My company has 2 cisco firewalls ISA3000, 2 switches IE2000 and we have 2 WAN lines to Corporate HQ. the request is once the primary link goes down the other is backup to take over.Can someone help to advise how can I configure to meet the re...
Dear all.1. I configured IPS as inline , but when begin testing using nmap it shows as "Would Have been dropped". FMC version is 6.3. 2. Today I saw intrusion event. but this time IPS result wont show anything.Please find screenshot. One of our serv...
Resolved! Propagate RAVPN segment to BGP neighbors
Hello We have a FTD managed by a FMC, the RAVPN (Anyconnect) is working fine but we need to activate BGP so it can propagate the segments the FTD has to its neighbors. Today, only the segments the FTD has an interface in it are propagated to the BGP ...
Hi, We have a FPR1010 locally managed with FDM.I need to replace the 1010 with a 2120.I'd like to create a backup of the 1010 and restore it onto the 2120.Anyone know if this is possible before I waste time trying and failing?I think the answer is no...
I want to replace a FMCv running version 6.2 with hardware FMC running version 6.4. FTD sensors are running with version 6.2 and registered with FMCv 6.2.Migration script is available for only version 6.5 so what i have to do is to manually configure...
HiI need to upgrade a ASA 5505 8.2(5) to 8.4 version. I cannot find a .bin file for 8.4 version. can you please help me find and download the .bin file?
Resolved! ASA failover
we have ASA pair running as active passive code 9.8.3. whenever we do a failover from active pair to standby the asa reload. it was working fine but started doing this suddenly. no network configuration changes nothing. the configuration are below AS...
I'm currently establishing an IPSec VPN between a 2900 router and an ASA 5525. The purpose of this is to be able to get management access to a couple nodes at the remote site which is where the ASA is. The conflict is that I've learned that I can't...
What is the procedure to use to import a certificate to be trusted for DPI for a Windows 10 machine that is not on the domain? I tried exporting the root-ca from our CA as x509 format and imported that to local computer trusted root authorities, but ...
Resolved! CISCO ASA as-override / allowas-in
Hi all,does CISCO ASA support BGP Feature "allowas-in" ou "as-override"? Thanks!
