As a warning, after upgrade from 6.2.x to 6.3.0.3 of the FTD image, the ROMMON is upgraded to 1.1.8 and it will fail. This will require a replacement hardware from Cisco under the SLA. Rom image verified correctlyCisco Systems ROMMON, Version 1.1.8, ...
Forum Posts
Hi, we're currently using an older Cisco VPN Client that runs on our Windows 7 computers to connect to our remote ASA 5506-X firewalls. Can anyone tell me if the replacement product called Cisco Any Connect client version 4.x ( or any version) for ...
Hi everybody, I have a issues with SNMP in my cisco ASA, I try to SNMP V2, V3, and nothing. My config in ASA. snmp-server host GESTION-DEFAULT 10.200.254.102 community ***** version 2c And my config in SNMPv3 snmp-server group bk v3 privsnmp-serv...
Resolved! Problem with DMZ
Hello all, I have a problem with an asa 5515 Firewall.I created a DMZ, with the ASDM, configured route, etc.this DMZ I have to connect virtual machines. I configured the CORE cisco Vss4500 with port-channell and all. But when I connect the Vcenters s...
Hello,I would like to hear a best practice to setup setup firewall for this kind of network:I will try to explain what I want to do.In company we have to network one is public network and second one is private, in private network no one can reach Int...
Hi All I have HA for my networks setup ( Active\Standby ) , when my primary ASA fails down or powered off automatically failover replication is happening and my secondary device carrying the traffic . whn i power on back my primary devic...
Is it possible on the ASA CLI to do a multi line config change in a transactional way. i.e. All lines are applied or none. Alternatively can I do a rollback if the config is not confirmed within a time period? There are two things I am trying to ach...
Hi,I am facing an Active/active failover problem model ASA 5525system image: asa922-4-SMP-k8.binASDM: 7.2(2)1both firewall configuration matched. and interface showing up. but failover is not working.any one help this..
Hi.. I have been facing weird issue where both end ASAs are encrypting packets for eachother end network subnet but not decrypting. Please suggest what could be the issue. ASA1 - 192.168.19.0/24ASA2 - 192.168.22.0/24
Spoiler (Highlight to read)Hello, I have a Firepower 2130 appliance running ASA image and is using smart licensing. I have recently uploaded new anyconnect license on the smart licensing portal and by default ASA will contact the server once in a mon...
Resolved! IPS and Malware Policy
I'm new to Firepower. I'm migrating ASA FW Configuration to Firepower. We will be using FDM and not FMC. My Question is: Should I enable IPS and Malware in every single (allowed) Access Rule OR create a single Rule for IPS and Malware for all the all...
Hello!I am attempting to deploy a 5506-X ASA using a radius server for VPN authentication. I will have two types of users with different access needs. Typically I would just have Local AAA users and separate them into groups for the ACL management....
Hi Friends, I have an IP address, but want to find the object-group name of the IP that belongs to ? Please lemme know the command used for that.
Hi We're trying to authenticate Anyconnect users through SAML. First, I wanted to confirm that this is viable, since i've read clientless is supported but it is not clear whether Anyconnect should work as well. Second, Oracle (IDP) sent us the "metad...
Hi Every one, Please find the below configuration we are not able to ping to DMZ to any network but we ping happening from DMZ to all network. ASA Version 9.8(1)!hostname ACC-1enable password $sha512$5000$PKH2SLMR2CTytt1uCQlAQA==$2uJHNALkt45EyuxG/Oga...
