Hi all, Our company has three branch offices. All these offices have an ASA5510 firewall installed. The three ASA's are sending syslog messages to a syslog server. All three devices are spamming the same "Deny IP spoof" message. Our provider has ass...
Forum Posts
Hi -We have a lab pod configuration that forces traffic to specific pod routers via PBR on our core switch. When a user chooses a specific group when logging into AnyConnect, we apply a group-unique IP Pool, then enforce routing at the next hop.Whil...
Hello,I can't remember the command that shows that you are on the active or standby ASA when you log in?The hostname will look something like:ASA5520-1/stby> ASA5520-1/Act> Thanks
Hello,On my ASA 5525-X, this message "Deny udp reverse path check on interface x" annoyed me very much each time after deleting and then reinstallating the VMs.It happened between v-management hosts and vcenter host.The workaround is: clear route all...
What is DEVISO? Does it is an appliance or software? Thanks
Hello all, i have a firepower 2110 in my network and i want forward all dns request from my inside interface through a L2TP to a server, is that possible? if not possible can i forward just the request to a particular domain? or what's the best optio...
I was able to import a copy of the 5.4 PIX Shun Remediation module into my system running 6.2.3. It works, but only if SSH v1 is enabled on my ASA, with v2 it doesn't. I ran debug ssh on the ASA when trying with version 2 and this is what I got:Dev...
Hi everyone, I am new in networking, and they ask me to configure an ASA 5508-X with FirePower. But it does not have anyconfiguration files and ios image. Does anyone know how to load an IOS image for this ASA 5508-X from rommon mode?Thanks in advanc...
HiWe have a requirement to set up a s2s VPN tunnel with a third-party. Our firewall is ASA 5545 and they use Forcepoint.They have a primary peer and a secondary peer and they want us to use IKEv2 and configure it policy based than route based. Would ...
So on a 4100 Firepower, I see the command "crypto map vpn_map1 2 set reverse-route". I am not all sure it is needed. The IPSEC profile is for has all static IPs on both ends (for sources, destinations, etc.).No IGP protocols are running the the FW.An...
Hello I configured Health Monitor alerting for Sensor Down (Application Heartbeat) event. As you can see, I have configured Threshold timeout of 8 hours, which I believe is, only 1 alert per 8 hours will be generated. This was working fine and we d...
Hi there,we have a problem to implement Radius Authentication for RAS VPN in our Firepower (6.4)Connection to a Radius in our environment works well, but we want to implement a secondary AAA authentication with a RSA Token Server which in running on ...
Hi CiscoI have a question regarding our ASA 5505 and ASA 5510. I am working on a solution on how to block repeated login attempts.As it is today, you can try as much as you like to enter the right password for the admin user (we only have an administ...
Resolved! Help link download ios 9.12 asa 5525-x
Dear Technical Cisco,I have a asa 5525-x running ios asa981-smp-k8.bin. Some feature issue security and vpn issue.So I need a image lastest version upgrade to fix error.any one help link download image asa9-12-2-smp-k8.binMany thanks.
