Network Security

Resolved! What does "BLACKLIST DNS reverse lookup response for known malware domain spheral.ru - Win.Trojan.Glupteba (1:31600)" mean?

I have a Cisco ASA5516x w/ FirePOWER with an IPS license installed and I am trying to determine what this Impact 1 alert means: BLACKLIST DNS reverse lookup response for known malware domain spheral.ru - Win.Trojan.Glupteba (1:31600) The source look...

Not able to reach the FMC IP from the FTDv which is on the same VM host

Hi Guys, The issue I am facing here is i have an FMC which is deployed on a VM and to which a FTD installed on a FP2110 has been registered succesfully and working fine. The FMC IP is 10.126.210.27 The FTD which is deployed on FP2110 is as below ...

Resolved! ASA 9.6 bridge group not available

I have some ASA 5506-X on version 9.6(2). i have read, that there should be possible to setup some Gi-Interfaces as bridge-group. All firewalls are on routed mode. as drescribed i configured Gi-Interface but inside the config the command bridge-group...

Resolved! asa 5516-x dropping DHCP packets even after ACL allow

Hi All Please help me find out why this FTD ASA 5516-X is dropping DHCP packets even after I've allowed it on the ACL: Phase: 5Type: ACCESS-LISTSubtype:Result: DROPConfig:Implicit RuleAdditional Information: Forward Flow based lookup yields rule:...

Need help about CISCO ASA with Fire Power services - unable to access source fire cli

FIT-ASA(config)# session sfr consoleERROR: Failed opening console session with module sfr. Module is in "Unresponsive" state.Please try again later. I'm getting this message whenever i try to access sfr Directory for reference, Directory of disk0:/...

Cisco ASDM multiple version

Hi, we are having multiple version of ASA version's like fwsm and Cisco asa. when we are installing latest version of ASDM and java for asa for 9.8 we lose access to fwsm stating ssl handshake issue. when we are installing lower version for FWS...

NAT not working as expectced in ASA 5516X with Firepower

Hi, I had 5505 ASA back for 3 years and the box went fault. So we migrated to ASA 5516X with Firepower module which is running ASA version 9.8.2 and the older one had version 7.2. I am having an public IP to the firewall outside interface and it is b...

Firepower Recommended Rules

Hi, I am just wondering, does my base policy such as Connectivity over Security intrusion rule will be in use if I generate and use Firepower Recommended Rules in my Intrusion Policy? Thanks

Firepower ASA VPN DACL?

Hello, My customer is running ASA on an FP4140 Appliance and is using ISE for posture assessment. Is there anywhere that has comments on ISE DACL scalability for AnyConnect VPN users? Is this like a switch where there is a limited amount of resourc...

Cisco ASA 5510 - Behind a Cable modem

Hi guys So I have a Cisco ASA 5510 ver 8.4(2), behind a cable modem with a dynamic ip address. I just need some help on how to configure this device, by the way, I'm new to cisco. Thanks Here is my config so far. interface Ethernet0/0 nameif ou...

AnyConnect VPN configuration assistance

Hello we have Cisco ASA 5506-x and would like to configure Cisco AnyConnect. FTD image is 6.2.x can anyone share the steps?

5506x Sec+ Upgrade to FTD or keep ASDM/FP , any comments?

So I got my ASA back from the clock issue, finally now getting around to updating it. ASA 5506x Sec+. I got all the updates done, rommon, asdm, and fp module. Had issue with the update blocking my traffic, working past that. Before I do anything el...

ASA Cluster fails after login

Hi All We have a customer with a HA pair ASA5525 running ver 9.6(4)6 which when we login into the ASDM the cluster remains stable for about 10 to 15 minutes, then the Standby device will drop out of the cluster. The standby can be added back in and...

Resolved! IPSEC site to site VPN Issues (lab recreating real issue)

I am new to the security world, and am having a bit of trouble.We are trying to set up a VPN for a customer to a new vendor - and it is quite a complex (to me) design. They have a DMZ, and basically we are trying to give the 10.2.0.0 remote subnet a...

Resolved! Inconsistent ACL hits seen in syslog

Hi, Any idea why traffic destined to port 443 might be bypassing an ACL for that port and hitting an IP any/any ACL that's at the bottom of the list, at least according to syslog. The ACLs: access-list inside_access_in line 5 extended permit tc...

Network Security

Forum Posts

Resolved! What does "BLACKLIST DNS reverse lookup response for known malware domain spheral.ru - Win.Trojan.Glupteba (1:31600)" mean?

Not able to reach the FMC IP from the FTDv which is on the same VM host

Resolved! ASA 9.6 bridge group not available

Resolved! asa 5516-x dropping DHCP packets even after ACL allow

Need help about CISCO ASA with Fire Power services - unable to access source fire cli

Cisco ASDM multiple version

NAT not working as expectced in ASA 5516X with Firepower

Firepower Recommended Rules

Firepower ASA VPN DACL?

Cisco ASA 5510 - Behind a Cable modem

AnyConnect VPN configuration assistance

5506x Sec+ Upgrade to FTD or keep ASDM/FP , any comments?

ASA Cluster fails after login

Resolved! IPSEC site to site VPN Issues (lab recreating real issue)

Resolved! Inconsistent ACL hits seen in syslog

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

same question, same issue, Intervlan routing not possible at FTD

Migrate from FMC virtual 300 to FMC virtual

FMC Connection Events Export

Technical presentation document for Firepower needed

KDC has no support for encryption type on ASA 9.18(4)22

FMC 7.2.5.1: Smart Agent is not registered with Smart Licensing Cloud

FTD 3105 : the disk /dev/nvme1n1 is unable to be unlocked or reverted

Stateful Firewall on Cisco Catalyst 9300 Series SwitchesStateful Firew

connetion events in FMC

Cisco FMC strong encryption license code