Let's say on as ASA there is an object nat statement such as in which nattedhosts is a 10.10.10.0 /24 subnet."ojbect network nattedhosts"nat (any,outside) static interface To create an ACL to allow ANY traffic to communicate with these hosts say por...
Our IKEv2 VPN is showing some very odd behavior. We have two devices our end that need to be seen as interesting traffic, they are n.n.8.4 and n.n.9.4. When these were configured I put in 8.4 first followed by the 9.4, the tunnel came up, traffic pas...
So if an IPSEC tunnel on ASA is down, only traffic I see in logs show IKE Receiver received on (IP of our local FW) from the (Peer IP of tunnel) but no IKE Response messages are sent back from our Firewall. Shouldn't I see this type of traffic in the...
Dear all, Currently i have 2 wan internet connection and i'm using sla monitor for Active and backup. and it is working fine when the Active down , the backup link will switch to Active auto. my issue that i want to monitor ( ping ) on Backup connec...
Hello, I'm trying to configure a bridge group for example: interface BVI2 nameif inside security-level 100 ip address xx.xx.xx.xx xxx.xxx.xxx.x interface GigabitEthernet1/2 bridge-group 2 nameif inside_2 security-level 100 interface GigabitEth...
have an issue. I have a Microsoft DHCP server behind a context firewall.My VPN clients come in through a different firewall (5510). I need to have them pick up a DHCP address from the appropriate scope. This works if the DHCP is defined on the 5510 ...
HelloMy 1st post...the colors are AWFUL/atrocious here. I remember when white on black was the 'in' thing...Anyone know where I can DL PIX 7.2(4) docs, in HTML, NOT pdf. I hate pdf's as I cannot edit them to add notes, I cannot create links within t...
Hi,I have rule 23 that allows all private IP address (IPv4 RFC1918 group object) to use ICMP and use TCP port 49 for TACACS+ to a specific IP (let's say 10.10.10.31). This rule seems not to work as I get the below result from a packet tracer on the F...
I'm trying to configure netflow exporting through a route-based site-to-siteIPsec tunnel on a Cisco ASA 5512 V9.9 device. Neither the CLI nor ASDM will let me select the VTI as the interface to use for the netflow collector. Is Flexible Netflow requi...
Hello Is there a way to write custom SNORT rules (for IPS) and OpenAppID scripts(for a new Protocol or an APP) and use them in FTD or Firepower Services?Links would be appreciated.
When using the ASA as a DHCP server, it is limited to 256 hosts. Does the FTD have the same limitations? The mask can be 255.255.255.0 or smaller. Thanks in advance!
Any ideas why I cannot SSH from any clients on the 192.168.68.0/24 network to the inside interface IP of the ASA?namesname 192.168.68.0 Net-NY2-SERVERSname 192.168.168.64 Net-NY2-NETWORKip local pool temppool 192.168.0.10-192.168.0.15!interface Gigab...
Team, We currently have about 40 sites, with each one of those sites they each have their own domain and are split between 5 different FMCs. Each site has either 1 or 2 "Internet" connections, with at minimum one of those connections is back to the "...
I have down loaded the new tool. It will not open in a Chrome or any browser. I had no trouble with v1.0.1 Anybody else run into this?
can some please help me with this issue ? asasfr-boot>system install ftp://10.30.2.40/asasfr-sys-6.2.0-362.pkg Verifying 111Upgrade aborted. ASA-5525-1(config)# SH RUN BOOT boot system disk0:/asa981-smp-k8.binboot system disk0:/asasfr-5500x-boot-6....
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
| User | Count |
|---|---|
| 8 | |
| 7 | |
| 5 | |
| 3 | |
| 1 |
