Network Security

I have just received my first set of FP2100s and I am reading some quick start guides and other Cisco documentation and I am trying to understand the FTD mode vs ASA mode and what limitations each has? Also what is the "common" method for deployment....

Hi, How we can setup rules on FMC to allow users to access social media sites like facebook.com and block access to public drives like onedrive and drop box. Is there any way FMC allow access on user group base through Active Directory (AD). How we c...

Hello guys! I hope my question is suitable for this subreddit. I have a little bit of hard time understanding how exactly VLANs on switches work. I have a topology of two switches (S1 and S2). So I want to create VLAN 99 - Management, VLAN 10 - Facul...

Hello All. I have Cisco 4321 as NAT and GW device for my server. I need and IDS/IPS for security and i need some suggestion for this, can anyone help me please. I'm thinking about buying ASA5516-FTD-K9 or buying UCS E-Series Server Blade and run UTD ...

Hello,  I have a problem with CSM. The disk is full.  I noticed it when the event viewer did not show logs and then I was not able to login.  I can see that the log rotate is working fine.  Any hints? Regards, Konstantinos

What is the difference between the Mandatory and Default rule sections in 6.x Firepower. I read this and it makes no sense to me. Thanks in advance! http://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/...

Hello, I have a couple of firewalls on FMC 1000, and two internet routers in front of the firewalls.I have enabled anyconnect VPN and a nat was added to use anyconnect and RA VPN.then i have configured PBR to use one internet link for some vlans and ...

HI, Does any one has a tutorial how to configure FTD SSL VPN authentication with NPS server ? I only found this (for ASA):https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/117641-config-asa-00.html I trie...

Is there a way to disable anti-replay checking on an ASA?? Im getting this error constantly almost in my log from one particular user, I have had them upgrade their VPN client to the newest version but it is still happening? Any suggestions?%PIX|ASA-...

Hi I am collecting User-IP mapping via User-Agent quarrying the AD servers. But my wireless users authenticate via ISE and I don't see those uses in FMC. Is there a way to configure FMC to get logs from ISE (without PXGrid) or configure something on ...

Hello, Anybody knows if the new 1000 series firepower appliances support hardware-accelerated decryption or its only supported on the 2100/4100/9300 series appliances.  

Hi,I have below scenario and wana allow internet access for inside hosts. Currently hosts access Internet through web proxy ( Non Cisco) and Proxy address nated on external firewall and connect to Internet. I have below scenario. Group - AInside Netw...