I'm testing out a zone-based policy in Packet Tracer for a project but I want to verify that my commands are correct... Here is my topology.What I'm trying to accomplish:The R1 router should add a new network, which will be a DMZ. Policy is...
Forum Posts
Looking for necessary commands to do the following policy:You should allow web traffic (HTTP and HTTPS ONLY) to get to the Server (192.168.2.3 /24) in the DMZ of R1 (R1 G0/0 – 192.168.2.1 / 24). Allow pings to the DMZ server as well.
Hi,We have currently got Cisco ASA Physical appliance running in Multicontext mode. and have multiple hosted customers using the different firewall context as the Gateway firewall. Now planning to migrate the hosted customer environments to Oracle Pu...
does cisco firepower support credential theft and abuse prevention capability?
Resolved! Please help with ASA5505 configuration
Hi guys!I have ASA 5505. My configuration is: interface Ethernet0/0description WANPORT!interface Ethernet0/1description DMZPORTswitchport access vlan 2!interface Ethernet0/2shutdown!interface Ethernet0/3description INSIDEPORT03switchport access vlan ...
Hi Folks,Could any one tell me, In which interface we need to configure ACL in ASA? for example, please find the below scenarios.Scen:- I have configured 3 interfaces in my ASA, i.e Inside ( sec level -100), outside ( Sec level - 0), DMZ (Sec-level ...
Hello,I am trying to upgrade my FirePOWER from 6.2.0.6-110 to 6.2.3 and I have downloaded "Cisco_Network_Sensor_Upgrade-6.2.3-83.sh" from Cisco download web site, do I have to download and install the module boot image as well or it is not needed? Wh...
I replaced an archaic cisco router from 2003 with an ASA 5505. Currently, it only has one security level and one vlan. All ports are configured to use that inside interface with intra-interface. Basically just a switch. The reason behind this is long...
Resolved! Failover testing on a Multi Context ASA
Hello, I want to understand the best and recommended way to initiate failover on a multi context ASA operating in Active/Standby Mode with 3 contexts. Failover testing is required for all contexts at once. Does doing a "failover active" on the system...
Dear Community Members, I have a locally managed (i.e.no FMC) FTD 2100 (OS: 6.4.0-102) appliance where I have configured and deployed SNMP using flexconfig. However, when the dedicated mgmt interface is polled by the SNMP server I see an ICMP port un...
Hi all, I need help with Port Forwarding. It's working but only when I also include the original port on the outside access. I have a server inside listening on port 443. I want outside clients to connect using port 50443. I can connect on port 5...
Hi there, i'm looking for a way to use PAP instead of MSCHAP for our VPN Remote Access.We've configured the Authentication with Cisco Anyconnect over an Radius Server (RSA).RSA couldn't work with MSCHAP so i'm looking for the settings to change the S...
HelloI am trying to remove a few contexts from the ASA. After that I am doing failover testing on the ASA. Does anyone have any proper procedure on how to perform a failover testing for a multicontext environment. This is very urgent so your help i...
Hi, I am day to day using Cisco ASAs and FTD / FMC for my company and gets lot of implementation requests and troubleshooting's. Is there Cisco LAB so that I can get above Cisco devices and test scenarios. I can buy from Cisco if they offer such serv...
Need to block vpn connection attempts from a couple IPs. I tried the below access list but it didn't work. How can I drop the traffic before it tries to negotiate phase 1?access-list cp-outside remark vpn block 1 access-list cp-outside deny udp host ...
| User | Count |
|---|---|
| 10 | |
| 5 | |
| 5 | |
| 2 | |
| 1 |
