Hi Forum, I am trying to change the IPv4 configuration but get the error message attached in the screenshot. I'm not able to ping/SSH the old IP from a directly connected interface either. I have two FTDs directly connected and the other one function...
HiIs it possible to export the endpoint compliance report from Cisco AMP console in pdf format?. If yes, please share the stepsThanks.
Can you configure user account permissions that apply to ASDM interface from the CLI? For instance, I need to gove someone red only access to the ASDM so they can view but cannot make changes to the config.Can this be done using the CLI?Mario
Hi,I am having issues with an ASA 5525 post upgrade to 9.6(4). Some websites/apps cannot be reached. sites like www.google.com and www.youtube.com work but www.cisco.com and facebook do not. I fear I messed up my xlate/pat config some how. I strip th...
Hi guys, Is there a way to download the packet capture file from a specific context? I know that I used to use https://<ASA_IP>/admin/capture/<capture>; to download it if it is just one context. The ASA uses mgmt 0/0 for management and it is connect...
Hi, I'd like to know if the last firepower 2130 OS is EIGRP compatible nativly or only using Flexconfig ? If it is not native can we have an ASA OS on an firepower appliance ? strange question I know but EIGRP is absolutely needed by my custome...
I was posed a question and am not sure of the answer.Can you assigne separate zones to subinterfaces on the same intface with ZPF?In other words, if I have 3 subinterfaces leaving one physical interface on a router, can I have 3 separate zones?The r...
Hello everyone,I have a question regarding debug in FirePower devices without using FMC. Just want to make sure the procedure is correct:- enable diagnostic logging in FDM,- enable console filter in FDM with level set to debug,- enter system support ...
has anyone set this up before? I did pretty basic setup 2x4150 per data center and 2x7702 per data center (HSRP, etc). Similar setups with 9300 worked just fine (few differences)We did best practises with site ips, MAC filters, etc and everything wor...
Hey all, I'm working on a lab in PT and I'm wondering if someone could help me with the syntax for these two commands I need to put on my ASA:Put commands on ASA to allow for ASDM access from inside networkConfigure dynamic PAT using outside interfac...
Good evening,I'm working on procuring C9200L-24P-4X-E switches and since it comes with Network Essentials license I'm wondering if supports FIPS mode? Thanks
We have a separate intrusion policy for ingress trafffic from the internet to our DMZ servers. When I run Firepower Recommendation on this policy, it suggests changing dozens of old browser vulnerability snort rules from Disabled to Generate Event an...
What command do i use to check if a vpn address pool is full?
Hello,We have a site to site VPN configured on cisco asa 5505, VPN is up and we can see TX and RX but we are unable to get any ping replies. We also tried RDP and other access to the remote end but no luck.The strange thing is TX and RX are going up ...
The PxGrid certificate for our ISE 2.4 and DNA-C 12.2.10 integration has expired and I am unable to find a way to replace it. Is there an way to renew the certificate without bringing down the fabric and deleting the old ISE server in DNA-C? Screensh...
