Network Security

Hey Guys; I've seen to be having an issue with this ASA 5510 FW; I don't wanna use NAT for inside/outside; since im natted on my router; I just want this FW to inspect packages and denied packages; that's it; when I check the logs on the 5510; it kee...

Hi,   we're looking info about to configure a cluster of FTD 2140 in Active/Active with some firewall context enabled. Obviously this all through FMC vm.   Which are best practices to do?   Thansk!    

Hi,    I try to allow communication for one specific IP to connect on the Internet in only specific time ranges.   Monday to Friday 7:00PM to 8:30PM.   As I know I not possible to start a new communication outside of this time window.  But I was expe...

Hi, I want know Packet Latency value (IPS,AMP,URL enabled 1 by 1 or combined) when I deploy Firepower 4110 or 4120 device Inline mode.   any public or internal document?   I will compare with other vendors   regards zafer

Hi Guys   After a power outage I keep receiving this error message on my ASA-5516X with FirePower services:: "/ngfw/usr/local/sf/bin/pmmon.sh: line 77: /proc//comm: No such file or directory/ngfw/usr/local/sf/bin/pmmon.sh: line 77: /proc//comm: No su...

Hi, I am having an issue about Elephant flow in my FTD and as per the TAC we need to do flow profiling to pinpoint which traffic is causing it however, it is not an option in my environment because this will have an interruption. We think of an optio...

Hello, Is there a way to confirm whether IOS XE devices have outstanding security vulnerabilities? Ideally I'm looking for something that will scan devices or something that I can put the version number in and get a list of vulnerabilities like you ...

Hello, I have a strange issue with a FTD running latest 6.2.3 code. When using rules that requires inspection like user or url rules, the FTD will match on those rules even if it shouldn't be a match. For example I am using an Identify policy and cre...

Hi Experts,    We've configured Remote Access IPSEC VPN on ASA (9.1). Users are configured to use VPN client. From the various blogs, I see "crypto isakmp nat-traversal"command is required for NAT-T but I don't see any configs relating to NAT-Travers...

Dear ALL,   I am facing a very strange problem in ASA. I have ASA two 5516-X in active fail-over scenario. After active failover occurs traffic going through sfr facing no internet. If i restrict asa to redirect traffic to SFR then traffic successful...

Hello there,   We've migrated from CX to Firepower on a ASA5515 forced by end of support by Cisco. We have lost some functionality the customer was using on CX. One of them is the Schedule URL Filter, they allowed to navigate users to some blocked we...

Hi All I'm new to the ASA5506 and am setting one up as a firewall for our office.  I originally set it up via ASDM and one of the things I did was to change the LAN IP addresses, since then I cannot access the firewall at http://'new address'/admin o...