Network Security

Resolved! Network Discovery Rules

Hi All, I have setup a Network Discovery policy to discovery users, host and application for my internal network address range only. Do I now need to create a monitor rule in my ACP for Network Discovery to work correctly, such as permitting all IP t...

Cisco ASA 5510 ADFS

Hello All,I am new to this forum & I'm hoping someone can assist me. I'm desperate! :) I'm a novice when it comes to firewalls & my current Cisco ASA 5510 was set up by someone else before I started this new position. We are using the Cisco ASDM 7.6 ...

Bloquear páginas con Cisco ASA 5505

Hola Amigos!Quisiera saber si es posible realizar bloqueos de página con el Cisco ASA 5505. He intentado algunas opciones pero aun no tengo suerte.Muchas gracias por todo.Saludos cordiales.

Problem with Weak SSH Key Exchange Options

I am having an issue with the SSH connectivity groups, it does not let me use SHA256 which means my FIPS 140-2 SALT automation server can't connect in and run commands from the firewall itself. There are options to set the ASDM and VPN exchanges, bu...

Resolved! FirePower task running indefinitely

Hi,On my firepower, 2 tasks are running indefinitely (1 waiting and 1 running) despite rebooting management firepower and FP Modules Task 1 : LDAP DownloadTask 2 Insttalingh Saurcefire Geolocation Database update Any help how to chnage this behaviour...

Resolved! Cannot find ASA Management interface MAC address

Hello, Our ASA 5506 shows a MAC address for its Mgmt1/1 interface other than the one learnt by a neighbor switch. I tried to locate Management1/1 's MAC address by issuing the following commands on the Firewall :show interface | i Int|MACshow vers | ...

Packet loss in ASA 5545-x

Hi, guys, The problem may be found, it is due to the service-policies do not work on VLAN1 and VLAN5. I tried to clear stats counters of the service-policy, but only work on vlan160....which means service-policy on VLAN1 & VLAN5 don't work. Anyway to...

Resolved! ASA 5510 site to site VPN

Hi guys,I am trying to use ASA 5510 to create a site to site VPN. After follow configuration guide, I don't see it is trying to establish the connection.Configuration guide:https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-ge...

Multiple FTDv in Azure behind an ELB routing/NAT question

I have 2 NGFWv/FTDv devices deployed in Azure. They are sandwiched between 2 load balancers to provide "HA" per the video series that everyone watches. https://www.youtube.com/watch?v=Zjc9hmc2m68 My question is when providing access to servers be...

5505 VPN Throughput

I have a remote 5505 easy vpn connection back to a 5520 (IPSec 3DES). I am getting multiple complaints of slow internal network speed over the vpn tunnel. I have posted my config below; is there anything I can look at or troubleshoot?ASA Version 7...

Cisco ASA & Ping

Is this possible? My goal is to block ping reply from ASA outside interface, but to allow ping reply to group of hosts to the outside interface my config right now icmp permit any unreachable outside with the above config, the ASA outside int...

Resolved! Object and NAT

Is there away to pull the object network name with both the host or subnet and nat configuration? Currently I am having to do a show run and copy the object with object-groups section along with the NAT sections, paste them into Sublime Text 3 and se...

VPN IKEV1 policie

During the VPN negotiation, does anyone know of a way to force a IKEV1 connection with a policy that has stronger encryption, say AES-256, DH Key 5, rather than reading top down and connecting on the first match, with may be 3DES, DH Key 2. I know...

Firepower Disk Usage:0 - Disk Drain of unprocessed events from Connection Events…

Hi: FMC version: 6.2.2 FTD 2130 Has anyone ever seen this health global alert before please ? : Firepower Disk Usage:0 - Disk Drain of unprocessed events from Connection Events… As a result I don't have any eventlog in the FMC regards,

ASA Management ACL Configuration and Usage

I'm trying to get some information on how to properly configure the Mgt ACL in ASDM/CLI for management access to the ASA. When I configure it to allow connections from my IP address and then attempt to SSH to it I get a "connection closed" and syslog...

Network Security

Forum Posts

Resolved! Network Discovery Rules

Cisco ASA 5510 ADFS

Bloquear páginas con Cisco ASA 5505

Problem with Weak SSH Key Exchange Options

Resolved! FirePower task running indefinitely

Resolved! Cannot find ASA Management interface MAC address

Packet loss in ASA 5545-x

Resolved! ASA 5510 site to site VPN

Multiple FTDv in Azure behind an ELB routing/NAT question

5505 VPN Throughput

Cisco ASA & Ping

Resolved! Object and NAT

VPN IKEV1 policie

Firepower Disk Usage:0 - Disk Drain of unprocessed events from Connection Events…

ASA Management ACL Configuration and Usage

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Disable IPS on Firepower 4120 for PSN/PCI Scans

What is taking place behind the installation process of Firepower 2120

Configuring OKTA SAML on FTD 7.2.5

Palo Alto to Cisco Migration Tool count_summary error

Dynamic Split Tunnelling - Android Devices

FMC100 migration to FMCv

firepower SSL policy cipher suite for default action

FTD wildcard cert showing CA not available

Issue port-forwarding on Cisco ASA

Cannot get FTD's backup file from FMC's /var/sf/remote-backup/ via scp