What is the procedure to use to import a certificate to be trusted for DPI for a Windows 10 machine that is not on the domain? I tried exporting the root-ca from our CA as x509 format and imported that to local computer trusted root authorities, but ...
Forum Posts
Resolved! CISCO ASA as-override / allowas-in
Hi all,does CISCO ASA support BGP Feature "allowas-in" ou "as-override"? Thanks!
Hi Experts, we are planning to create policy on the basis of source SGT in FirepowerFMC/FTD deployment. Target code is 6.4.0.4. Now we are looking for this deployment scale details. Any pointer is appreciated. Jay
Dears,I met a problem of static NAT, my asa version is 9.6 . The topology:And configuration of devices:[R1]v15.2int g1/0 ip address 10.0.0.1 255.0.0.0 no shutdown===========================[asa]interface GigabitEthernet0/0 nameif outside security-lev...
Scenario is like this:I have site A and Site B. I am trying to get connectivity between Site A and site B by configuring IPSEC site-to-site tunnel. On site-A I am using cisco asa 5510 ver 7.0 and on site-B cisco asa 5500 ver 9.2. In short one FW is r...
We have a ASA 5585 firewall, running version 9.8(2)28 and we saw a strange issue. I configured a new IPsec tunnel, using ikev1. However, our partner was not ready so I configured everything but the PSK. Today, we noticed that an another active was do...
We are facing disconnection issues on the client machine which is connected localy.It has installed client version of application.The Application is hosted on the AWS and when client access the the application from AWS it works fine.But after some ti...
Hello We have an issue on an LDAP AAA authentication as all users on AD are able to login and I need to allow only one group of all the organization.I've tried the memberOf configuration proposed in the articlehttps://www.cisco.com/c/en/us/support/do...
Hi!I am trying to install a virtual FTD in a VMWare server and when the installation proccess finishes, the FTD don't answer.The screen I am seeing is the attached below.Any idea of why does it happen?
Hi Guys,I have ASA5516X that will run in multiple context and one management VLAN. Is it possible to assign the management interface to difference context so that each context's mgmt traffic will pass through that?Thanks
Hello Guys I am kind of New to Cisco ASA. I Used to configure VPN tunnels in Checkpoint, but there used to be Only one PSK.With Cisco 9.8 ASA Code you can put two PSK's for local and remote. I understood how these two PSK's work with bi-directional a...
Resolved! FMC Licensing
Hello,First post here and I'm hoping someone can provide a bit of guidance.I've searched around and discussed with my peers and we all seem to have conflicting information around the FMC licensing. I have a customer who currently has 2 5525X's with ...
Resolved! URL Filtering Update
Our Firepower is setup and working correctly for Application blocking, but the URL blocking isnt working.The Firepower can download updates successfully for firmware updates but under the Intergration option, the URL Filtering shows Last URL Filterin...
Resolved! cisco asa HA failover link
Hi,I have one interface Eth2 for failover link (statless) and another interface Eth3 stateful failover.If I remove the failover link Eth2 OR stateful lin Eth3 from Active firewall, will it failover to Standby ?From the cisco document, i read that, fa...
Hi All, I have a customer converting from ASA to FTD. We are using the Migration Tool to convert the 4000 Access Rules and NAT's, and I am importing all the objects using the REST API. However, the REST API does not support adding routes at the momen...
