Hello, We have an ASA running FTD 6.2.3 managed via FDM web UI. Upon configuing syslogging in FDM, we noticed that syslog messages in our syslog server do not have the hostname of the ASA in them. So the Syslog server either shows hostname as "ip-a...
Forum Posts
Resolved! New ASA 5506-X
Hello i have a question about CA certificate and ASDM image for ASA 5506-X , i don't have that knowledge regarding to firewall, anyway i got a new box ( ASA 5506-X ) for our customer and my questions are : 1- Do we need CA certificate for this...
Hello Experts - I have Cisco ASA 5512 as a gateway appliance and an alternate router Cisco 2801. I need to use HSRP on ASA and on a router to work as a active stand-by. Primary gateway should always be ASA and if its inside interface attached with th...
Guys, hello. I’m would to understand which AS BGP fits best in ASA VTI configuration? Should it be the same AS or it’s better to configure each location/asa to individual AS number?For me It’s looks like different location should be with different AS...
Hi All, We are using Configure Cisco Firepower User Agent for Active Directory installed on a domain controller, both sections are green which seems to indicate it should pass the details back to the firepower. I have some rules on the firepower an...
Hello, I'm having trouble with high response times with icmp via CheckMK tool for equipment that is housed behind a DMZ in a Cisco ASA 5540. I am in doubt if it is a problem of channel capacity or packet processing. The response time presented in th...
Hello All, I have an ASA 5540 equipment and I need it whenever its CPU reaches more than 70% I want it to execute some commands and save in an arquina in disk0: / I'm thinking of making an Event Manager for this, can anyone help me with this conf...
HTTP Security Header Not Detected CWE-693 following bug found Cisco FMC (6.2.3) Please provide solution for Vapt report.
TCP Sequence Number Approximation Based Denial of Service In FMC and Firepower 2100 series (6.2.3) firewall we have found vulnerabillity - Category: TCP/IPCVE ID: CVE-2004-0230Vendor Reference: -Bugtraq ID: 10183 Please share the solution for the...
Hello, Looking for the best solution to this problem. Currently we have our main site as ISP-ISR-Firepower-ASA-InternalNetwork, and DR is as ISP-ISR-ASA(to be replaced by firepower)-ASA-InternalNetwork. We replicate the configs for the two primar...
I guys I wanna ask a newbie question, I have a site with majority of clients using WEB/Mail/DB content, ISP like, and for the moment I have no firewall in the border. I want to buy one with L7 filtering capabilities, I traffic 500Mbps/200Mbps Up/Down...
Is there an integration between FMC and NSX or ESXi. I'm looking for something similar to a solution that Palo Alto has, where their NGFW management platform integrates with NSX Manager and vCenter. Through this integration, the mgmt platform is able...
Resolved! FTD 4120 Vulnerability
Hello! During a vulnerability scan on my FTD 4120, I was provided with the below vulnerability to resolve. Can you tell me if 4120 has enabled the H2 protocol? Vulnerability description: Apache HTTPD: DoS for HTTP/2 connections by continuous SETT...
I am after anyone who has deployed anything similar and what to expect regarding failover behaviour and times. The scenario I am working with is a multi-site network, each site with two connections to the same ISP using either /30 or /31 IPv4 address...
Hi, Did anyone online adjust clustering health-check holdtime on Firepower4100 running ASA application?Will that impact the cluster operation?I don't find a reference document.
