Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...
Forum Posts
I just starting to get disk space alarms from FMC about one of our firepower 9300 modules running version 6.2.3 I can see that there is two specific folders called detection_engines that can be found under /ngfw/var/sf/ and under /ngfw/volume/6.2.3/s...
What are some of the requirements around IKEV2 on a Cisco ASA? Is it dependent on hardware? License? Code? I have been trying to implement this for a bit now and can't seem to get things up and running. My Site to Site VPN skills are very "Novice",...
Resolved! Can FMC be connected to an FTD device over a WAN connection with a NAT device in between ?
I am planning to connect a FMC to an FTD device over a WAN connection with a NAT device in between. Can this work ? If yes, what would be the risks associated with it ?
Hi all, I’m finding it hard to get information on the best way to do a restore of 2 ASA's in HA mode.Imaging the config on both ASA's are bad and you don't have the time to unpick the config to remove all that you did over the last few days.You have ...
can help me with in depth differences between asa appliance 5506x vs 5508x model. i am supposed to replace 5505 models with one of these.Thanks
I am looking for any good docs or resources I can use to assist and or research in regards to interpretation of log events in Real-Time Log Viewer in ASAs. Any help is appreciated.
I'm attempting to create objects in CSM 4.12 with the API, and so far I've been successful in using the AddPolicyObject to create objects, and the GetPolicyObject method to retrieve object override data on objects I created manually through CSM, but ...
I'm still figuring out NAT in the post 8.2 world. This question is a two parter. First. I have configured SSL VPN and and have the no nat setup like this..... nat (inside,outside) source static INTERNAL INTERNAL destination static VPN VPN no-proxy-...
Hi I am getting below error while doing HA. Please assist someone which SW version mismatch.
Dear, How are you? please your support. We will implement modules SFR to two ASA in production and one FMC. We bought the license L-ASA55XX-TAM , that contemplate AMP and IPS and SSD disk. To enable both license I understand that is necesary license ...
Hi all, I'm seeing weird log entries on my firewall. Like this: 2019-02-11 09:22:55 Local6.Notice 192.168.10.10 Feb 11 2019 09:23:03: %ASA-5-106100: access-list VLAN100_access_in permitted tcp VLAN100/172.24.2.163(8021) -> VLAN200/172.24.0.163(51804)...
Hello everyone, We have ASA5525X with Firepower SFR module where we are implementin SSL decryption with known key for internal servers. Right now we are planning changing our Citrix Netscaler load-balancers with F5 and security department is going ...
Resolved! Setting up Cisco ASA firewall
Hi everyone, can you guys help me with this one? From the topology, PC1 to PC3 needs to connect with the Server using ssh.Here's the details:[IP Address]1. PC 1 : 192.168.1.2 2. PC 2: 192.168.2.23. PC 3: 192.168.3.24. SSH Server: 10.109.80.855. TP Li...
Hello to all, I am receiving an abundance of these particular type of alerts. --133:59:1] dcerpc2: SMB - Nextcommand specified in SMB2 header is beyond payload boundary [133:27:2] dcerpc2: Connection-oriented DCE/RPC - Invalid major version How can ...
Hello, We have 2 x 5516x ASAs in active/standby and their outside interfaces go into a stack of 2 x 3750s. In this switch we also have our ISP routers which are setup as a HSRP. The active router is on 100MB line and the standby router is on 30MB. ...
