Good afternoon - I have an issue where a user cannot access a banking site, and is getting an "end of file error" that references TLS. We have a cisco 5505 running 9.2.4(27). From what I've read, I need at least version 9.3(2), which that firewall ca...
Forum Posts
Hi, I have a firepower device currently running on my FMC. Ongoing through the GUI of the FMC for the particular firepower device, I came across a tab called "Inline sets"I would please like to know what the Inline sets are and what it is used for. F...
Resolved! VPN Filter ACL - Functionality
Hello I have Some questions regarding the VPN filter ACL Functionality.I recently configured a Route Based VPN Tunnel between my ASA and Azure Cloud. There are two ACL's here. The INSIDE interface has an an ACL applied and then I also Put a VPN filte...
Trying to use the Microsoft Cloud App Security log collector and cannot get the ASA to write the buffered logs to the ftp. Getting 414001 syslog error. Can ping and use ftp client but not direct form the asa. Both are on the same subnet. 192.168....
Resolved! ASA Firewall
Hello experts, Could you please explain me the below couple of query? 1. ssh 10.136.100.226 255.255.255.255 outside---- In my asa FW I could see this command. Whether the command is to take the ssh from outside? I tried to ssh into the device with th...
Hi all, I am not sure if a failover can be achieved in such a static setup. The scenario is as follows:Subnets A to G are internal and go through ISP link 1. There is a Zscalerredirect filter applied to the LAN interface of the firewall that picks th...
Hello, We have a remote office that is changing ISP's and just wanted to confirm the steps I would need to take in changing the firewall config for this to work. We are currently running a ASA 5516 and have a site to site VPN from the remote to main...
Will this allow a RDP connection to the 164.64 host to the 192.168. host addressnat (outside,inside) source static 164.64.X.10 host destination 192.168.X.10 host service tcp rdp Thanks
I purchased a new ssl cert for my Cisco ASA 5506. I installed it and there was an exterior scan run against it. The scan failed. Here is the error:SSL certificate is untrusted How do I resolve these error?Any help is appreciated.
Hello! "Cisco Firepower provides full contextual threat analysis and protection, with awareness into users, user history on every machine, mobile devices, client-side applications, operating systems, virtual machine-to-machine communications, vulnera...
Hello Guys I am trying to build a Route Based L2L VPN tunnel between my Cisco ASA running 9.8 Code and Azure CLoud.I have a Basic Idea on the Configuration of the Route Based VPN tunnel. But I would like to know is it possible to Configure ACL's in t...
I'm in the process of acquiring some new FTD's with FMC. But can't find a definitive answer as to whether the FMC can manage ASA configs & logging too ? The company has a large estate of 5525-X without FirePower & a few 5545-X's with.I'm trying to i...
Is there any safe way to test Firepower's IDS policy on a machine to see if the IDS policy is working? I know of the EICAR test for detecting malicious files, but is there an equivalent site we can go to for IDS testing?
Dear , My company has 2 cisco firewalls ISA3000, 2 switches IE2000 and we have 2 WAN lines to Corporate HQ. the request is once the primary link goes down the other is backup to take over.Can someone help to advise how can I configure to meet the re...
Dear all.1. I configured IPS as inline , but when begin testing using nmap it shows as "Would Have been dropped". FMC version is 6.3. 2. Today I saw intrusion event. but this time IPS result wont show anything.Please find screenshot. One of our serv...
