I am trying to have an external user (outside the perimeter of my network) that needs to access a server in the data center. Would I need to create 2 policies for this? One fw policy when it comes into the border firewall and another at the data cent...
Forum Posts
Now that Cisco has owned Meraki for a few years, is there any potential for the FirePower Management to be cloud-based? More modern offices are not connecting together now that most applications are cloud-based or in AWS, for example. However, we do ...
Can I have FMC to drop an email every time one particular ACL is hit? I know I can generate a SNMP trap or a syslog event, but is email notification an option somehow?
Nvm please delete.
Hi All, We have Cisco FPR 9300 deployed in Standalone. We are getting maximum Intrusion events " POP_UNKNOWN_RESP (142:2:1) " Please us me know what event it is and how to eliminate this events RegardsSA.
Resolved! ASA WebVPN banner disclosure
Hello guys. After a security scan, the finding was that ASA reveals to much information on TCP/443 port. For example, a simple nmap scan shows: PORT STATE SERVICE VERSION443/tcp open ssl/http Cisco ASA SSL VPN while the scanner (I don't know which on...
hi guys im facing a problem with my asa 5512-x, its taking to long to turn on, what could be the reason.
Is there anyway in FTD cli (or FMC cli/gui?) directly to launch a ping with a specific source IP address? The firewall has an external ip on the outside interface. The outside nat pools have other ips in that subnet. I suspect a third party is blocki...
HiCould use some help understanding how fragment chain command works, and how to troubleshoot. So, what i'm reading so far is that ethernet frame is set to 1500 MTU by default. if a packet is larger than the MTU, then it must be fragmented before b...
Hello, I am trying to add ASA Contexts in Solarwinds with Snmpv3...the problem is these contexts are added alright but no interface details are available and in the list resource section of solarwinds there is no option to select Cisco NetInsight.. A...
It says the SNMP v3 connection passes, but I'm not getting any interface, cpu, memory stats. Does anybody have this working?
On the new FirePower version 6.2.2, there is a new feature call Threat Intelligence Director (TID). Has anyone start leveraging this new feature and what are some of the common open feeds that the TID can be imported to FMC automatically?
Dear All,I would like to be able to have a better understanding about DDoS attacks and how to stop them, but first I would like to have a more solid known about networking. I know that the more dangerous DDoS attacks target common/known open ports li...
Hello Community!I'm noticing an interesting behaviour of Windows standard "tracert" command: when I simultaneously run several tracerts to the same host in the internet I get some random timeouts on different steps of trace. I run Cisco 4331 with IOS...
Hey all,I'm trying to simulate my lab environment in packet tracer but having trouble addressing my ASA interfaces, namely because I have to use VLANs. Here's my project so farMy addressing table:and my topology, On Corp asa I did the commands:Int vl...
