Dear. My office existing running FrotiGate201E with SSL VPN, I will setup Cisco FPR1140 w/transparent mode for two tier firewall protect solution, I want to verity Froti SSL VPN traffic can pass to firepower transparent mode ? Many Thanks.
Forum Posts
Resolved! URL category #
hello everyone, during weekend i upgraded fmc to 6.4.0.4 version and since that time i see something strane in data analyses. in URL category column there is no longer Travel, Shopping, etc but i see there numbers like 1284. what does that mean? it i...
I received a new ASA 5506-X that I successfully deployed in my network by following session "ASA9.7 and later" of the quick start guide (https://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/5506X/5506x-quick-start.html). I then tried to do ...
Hello all, I was trying to upgrade to the latest Anyconnect version on the ASA pair. I successfully did that, to both of them but in the process, the Primary active FW became as Secondary active to make it back to Primary active I gave the command: "...
I am trying to figure out the best way to set this up on an ASA (9.6).We want 10.0.1.0 to go out ISP1 unless it fails, then choose ISP2.We want 10.0.2.0 to go out ISP2 unless it fails, then choose ISP1.(This is for simplicity there are several networ...
I configured the zone based firewall and the rules seem to work fine. However, the speeds are really bad. Even when just using pass actions it only reaches 1.5 Gbit/s (with the firewall turned off it reaches 9-10 Gbit/s).This even happens with very m...
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191112-asa-ftd-lua-rce?emailclick=CNSemail It stated: A vulnerability in the implementation of the Lua interpreter integrated in Cisco Adaptive Security Appliance (ASA)...
Hi Experts,We've a requirement of rules to be allowed for penetration testing from Outside Public IP to scan all entire Internal networks on port 'any'.Typically, we've seen PAT from Inside to Outside, is there any configuration to be done to accomp...
Hi,I`m having FMC 6.2.3 virtual and two FTDs 4100 configured in HA.I can not deploy my configuration (policy rules) on both FTD.I'm getting deployment failed on FTDs HA as error message.Please refer to that picture attached.I really need help guys pl...
Hi All, we have a site-site connection with azure with BGP enabled. I am trying to force tunnel all the traffic from azure to our ASA. However even though the site-site vpn is working fine. I am not able to make this work however I know its ...
Hi,we have oberved that ASA is not authorized after reboot with no internet. The ASA is successfully initial registered and authorized License Usage==============Firepower 2100 ASA Standard (FIREPOWER_2100_ASA_STANDARD):Description: Firepower 2100 AS...
Is "AnyConnect Secure Mobility Client" open source?
Hi, I have question regarding Global Packet Inspection on a Cisco ASA.So, since by default all traffic from higher security Interface is allowed towards a lower security interface but NOT the other way around, traffic is inspected in>out to create a ...
Attached is the current infra but we're getting attacked with several ports I tried to set an access list but when I set the configuration there's no hitcount when I show run the access-list. something is not right even the access-list OUT_IN extende...
Resolved! FMC support for FPR-1K series devices
Hello world ! Actually this is a pre-sales question, and I do not have previous experience with "Firepower's". :-) I'm preparing a solution for a client and include FPR-1K (all types, some 1010, some 1120 and a 1140) devices but checking-out the FMC...
