Hello, I currently have multiple interfaces on my ASA that are tied to different VLANs with specific access controls between them. These VLANs all NAT through a single outside adapter (20.20.20.1). This address came in a block of 5 from the ISP 2...
Hello, I currently have multiple interfaces on my ASA that are tied to different VLANs with specific access controls between them. These VLANs all NAT through a single outside adapter (20.20.20.1). This address came in a block of 5 from the ISP 2...
I am using ASA 5515x I need to change the admin user password, as well as enable mode password Tried this command first for enable mode password: #enable (with old password) #config t #enable password <new password> #exit #exit Reconnected wit...
Hey everyone, I'm creating a script that adds hosts and groups to FMC, however it seems that when you want to add hosts to a group you need the unique id for that host and not only the name for the host. Which is a bit of a nightmare as you need to c...
How to shut down ASA Site to Site VPN tunnel without removing it? I only want to temporarily shut down the VPN tunnel for testing on another firewall, since the peers have similar interesting traffic, but I don't want to remove the existing VPN tunn...
I need to create an ACL (or multiple ACLs) on my FTD2130 to allow hosts to the huge list of IPs and URLs required for Office365 (located here: https://support.content.office.net/en-us/static/O365IPAddresses.xml ) How can I do this automatically/scr...
FDT (6.2.3.6 - build 37) Flex configure allows the addition of EIGRP and ISIS but for ISIS there appears to be no command such as show clns to prove it is working. Has anybody tried this?
HelloI am trying to achieve something complicated (for me atleast) and I was wondering If someone can assist me. Simple diagram,ASA1 -----VPN------ASA2------VPN-------VPN ASA3Lan1 LAN2 LAN3 ho...
Why there's a [any any deny] implicit rule at inside interface? As i know inside int security level is highest 100 + stateful inspection why the software defaulted a implicit deny rule?
Hi,I've created in policy ASA (release 9.3) with SGT as source and destination, but in FTP (Firepower Threat Defense) I just find it as SGT source only.In FTP it is possible to make a policy with source and destination SGT? Thanks
Ok this may seem a bit of a dumb question but I just can't get a straight answer from Googling or from the IOS release 15.2 Security Config guide for ZFW. So,I am editing the parameter map that governs tcp queue length in the OoO (Out of Order) glob...
Hello, I have a new server on my dmz which needs external access to a public IP address outbound over tcp/2001 I also need external users to be able to hit this server externally inbound over https I have setup an external dns called server.mydom...
Hi allWe are using ASA 5500-X firewalls with firepower services. They are installed and active in our network. During the FMC installation, default Access Control Policy is define with default action "Intrusion prevention: Balanced Security and Conne...
Hi Team,We are trying to scan the ASA firewall and getting the below error. Is there any way to resolve this issue? Please sugget.We did a security scan of Internal firewall and found one issue - "TLS Session Renegotiation Vulnerability"The TLS proto...
Hi All Just a quick sanity check, basically the requirement is that we NAT all our traffic to 1 ip address when going over the vpn tunnel. The VPN is built on a natted source network of 192.168.1.0/27 , I have set a NAT rule to dynamically NAT all ...
Is there any documentation that states if a Cisco ASA fails open or closed.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
07-16-2024 12:24 PM | ||
07-16-2024 06:54 AM | ||
07-11-2024 12:30 PM | ||
07-10-2024 06:40 AM | ||
07-02-2024 04:27 AM |
User | Count |
---|---|
11 | |
8 | |
8 | |
3 | |
2 |