Will the command to deny ip any any on the SFR acl stop all traffic from hitting the SFR and just process through the firewall as normal?
Forum Posts
Hi,I am trying to configure snmp for asa . my snmp server ip is 10.0.0.1 ,In syslog i am getting the following message "refused connect from 10.0.0.1" ASA(config)# snmp-server enableASA(config)# snmp-server host inside 10.0.0.1 community somesecretw...
Resolved! Upgrading FTD from FMC
Hi, ive seen a guide from Cisco on how to upgrade the FTD devices under its control within FMC. I upload the latest patch for the FTD 2110 from Cisco and try to install from FMC - it keeps saying no devices meet the criteria. I’m wondering if I’m up...
hi,i got 2x ASA5520 running 8.2 that i want to merge and do HA/failover.one has 20 security contexts and the other 10 contexts.my question, if i configure failover between them, will the context merge to 30? or both units take the higher count of 20?...
Helloi have a question that if we do not issue the spanning-tree root command the root primary is going to get selected based on Links or MAC address.is that root election rule is going to apply for root "secondary" as well?thanks in advance
Hi, I've not upgraded our ASAs in a while and need some help doing this. We have 2 x ASA 5516s with Firepower and they are in an Active/Standby setup. Here are some details: I have a TFTP server, but am not sure which firmware to go to, I have done...
Hi,How can I check the current used vpn license and the other licenses from asa ? Thanks
I have an asa5505 Ver 7.2(4)that I am trying to get a SSH connection with SecureCRT but I keep getting Password Authentication failed. This is what I have entered.ssh 192.168.0.0 255.255.0.0 insidessh version 2username Name password Passwordcrypto ke...
HelloI tried to update the firepower module of a cisco 5506 firewall but the installation of the moduleit is failed, The final result is always Unresponsive ciscoasa(config)# show module Mod Card Type Model ...
Resolved! Backup FMC installation
Hi, im looking at installing a different FMC at a backup data centre. Can you install a second FMC (ESXi) and link the two so one is always the primary and secondary only kicks in if primary goes down? This is like Checkpoint basically ... thanks
Hi,did not find any information in syslog related to the crash or reboot . Do we need really need to update the logging level , for example 101001 (%ASA-1-101001: (Primary) Failover cable OK.)is set to alerts . Is there any benefit of changing logg...
Our Primary Active ASA has died and need to replace failed one. Only ASA we have as spare is below IT has same hardware and ASA software as current active one.Need to know if i add this ASA will it work fine as Primary standy one ? show activation-k...
Hi all we use G Suite for work. We have Cisco ASA with firepower, We can access some google services, but we cant access the google services on 172.217.170.0 range, we can only access services on google 216.58.223.0 range. i checked the dns and its c...
Hello all,I have a vendor that needs to ftp files to our Linux server using sftp, so I decided to change the default port 22 that ssh uses to a higher number for security reasons (too many brute force attempts), it works internally but somehow I can'...
Hi Allusing Cisco FirePower and created a rule to allow web traffic on 80 and 443, can see traffic hitting this rule in the logs this is fine. But, we are using "Inherit from base policy (Balanced Security....) so lets say we visit a URL on port 678 ...
| User | Count |
|---|---|
| 11 | |
| 6 | |
| 4 | |
| 3 | |
| 1 |
