Hi all Please see below output for troubleshooting. I have ASA with 3 interfaces, Outside(192.168.88.10 sec-level 0), Inside(172.16.0.1 sec-level 100) and DMZ(10.0.0.1 sec-level 50). from Inside i can reach Outside and vice versa. but i cant reach in...
Forum Posts
Hello all,Can somebody help to understand our solution please?We have dedicated aggregation switch for SPAN, to aggregate access SPAN ports.1) How can I check that all access switches are SPAN properly? 2) Is local SPAN configuration correct or we mu...
Dear all,My name is HaiNT. Now, I am facing an issue related to firewall ASA communication as the attached picture. In that picture, it has two scenarios. I have to implement the network following scenario 1. I don't know to resolve the issue. Your s...
Hi Experts,I would like to know if FTD can connect to a stack switch using port-channel? For example, FTD01 connects to Switch-1 and Switch-2 via port-channel and this Switches are stacked together.Thanks
Hi all,I have 4 Firepower devices: 2 FTD 2130 and 2 ASA5525x with Firepower module which are managed by FMC. All software are in 6.2.3.7 version. The problem is deployment time. While SFR modules take appx 4mins to deploy FTD HA Pair is deployment ne...
Hi All Has anyone configured CIMC on FMC 1000 in shared LOM mode ? As per following article it is not supported: https://www.cisco.com/c/en/us/td/docs/security/firepower/1000_2500_4500/hw/guide/b_install_guide_1000_2500_4500/b_FMC_M4_HIG_chapter_00.h...
I recently uploaded an SSL cert to our FMC to apply to a RA VPN and received the error below. Is this expected when uploading a PKCS file?
When integration Firepower Management Center 6.3.0 with Threat Grid 5504 version 2.2.3 appliance, I get two options, File Submissions, Private Report Look ups - This is for my Threat Grid 5504 appliance Public Report Look ups - I guess this for Thre...
asa(config)# crypto ikev1 policy 10 Usage: crypto { ca | dynamic-map | ikev1 | ikev2 | ipsec | isakmp | key | map } For more detailed help, please refer directly to the subcommands with ASDM I get the same message.I know nothing on this wor...
Let's say I am terminating tons of /30 devices via IPSEC to ASAs. Now I need to get all these Networks into my corporate network using OSPF. So rather then sending a ton of /30 networks how do you go about sending a summary of this?I understand how t...
Hello , For a Firewall Rule at One 8370 managed from FMC , I see "Send Connection Events to" Selected as "Event Viewer" . But "Log at Beginning of Connection" and "Log at End of Connection" is not selected. Having said that what should we expect ...
Resolved! Web Browsing issue on some websites
Hello, Pretty new to cisco, i believe my problem is firewall related, i'm having some strange issue on a 2960 running c2900-universalk9-mz.SPA.153-3.M2.binThe configuration is pretty basic.I've got an ISP modem, the cisco 2960, another cisco 892 for ...
Hi, We have a doubt: We are trying to get all the "Access-list" in which an IP 192.1xx.xxx.xxx appears and we are not able to list them in the ASDM, but neither in CLI, it seems that when configuring the rules from the asdm appear as objects of this ...
Has anyone tried to setup an online monitor so they can see if their ASA firewall or it's VPN gateway is up? Just looking for some ideas on how to do this.
Resolved! ASA 5540 and CVE-2018-15388
Good day. I have an ASA 5540 running 9.1 (7) 21 in the park for connecting remote users via AnyConnect (WebVPN). Since the CVE-2018-15388 vulnerability was recently rolled out, and this piece of hardware last year had EoL, the question arose whether ...
