Hello all-I am attempting to forward both TCP and UDP 5081 and 5082 traffic hitting the outside interface on my ASA to an internal server at 172.16.200.10. behind the "camera" interface I've done a fair amount of reading on the topic and believe I ha...
Forum Posts
Trying to find the field in MySQL on Firepower/Sourcefire DC that toggles "change password at first login". We want to be able to query this. DB version is Sourcefire 5 (on a 3D3500). Any info appreciated.
For the life of me I cant figure out why I cant access the ASDM anymore. Simple config below with HTTP server turned on for 192.168.1.245 but it keeps getting rejected "Unable to launch Device". I can ping the .245 address no problem. Config bel...
The below ACL is blocking telnet access when it is supposed to be permitting it. Why is this happening? access-list 102 permit tcp any host 208.190.2.2 eq telnetaccess-list 102 deny ip any anyinterface Serial0/0/0 ip address 208.190.2.1 255.255.255...
Hi I'm trying to configure MacSec (link encryption) on ISR 4K Routers (Cisco 4431) and Cisco Switch 3850. I have a question here regarding MACsec interoperability on routers and Switch which I can`t find out. Focus of MACsec is really straightfor...
Hi All, I have standalone (FTD)FDM configured with policies and interfaces etc. Now we are planning to deploy virtual FMC. How can i convert FTD configuration in FMC. Is there any tool or if I register FTD with FMC it will take all configuration i...
Hello Community, I'm new with this environment, Firepower Threat Defense, so I'm going to explain my case.The company purchased a new Cisco ASA 5506-x with Threat Defense. I would like to know how can I start the configuration via ASA CLI, because wh...
Hi helpful people, I have an issue that is confusing me and hoping someone can shed some light on the situation. I am receiving a number of log entries of the nature: Inbound TCP connection denied from 192.168.2.210/55187 to 192.168.2.2...
Resolved! ASA 5508 9.6 public ip to dmz
ASA 5508 9.6 public ip to dmzhow config # sho runASA Version 9.6(1)!interface GigabitEthernet1/1nameif outsidesecurity-level 0ip address x.x.x.111 255.255.255.0!interface GigabitEthernet1/2nameif insidesecurity-level 100ip address 192.168.1.1 255.255...
Hi Experts, Could you please provide more insight on to below packet capture. What exactly happening between, 10.20.59.52 and 204.110.219.102 Also, suggest good docs/online links, which will help understand the TCPIP handshake and packet analysis. 9:...
Hi All I hope you can give me some feedback on what I am looking to design. I have a DC with multiple landing sites with dark fibre connections to each site. I need to VPN traffic back across these links encrypted and I''m looking to use 4110 NGFW. A...
Hi, We are deploying Cisco ASA5508-X. We want to set user based policy for internet access and DPI-SSL ( decryption) We don;t have user Active Directory or any LDAP Server in our organization. we have less than 40 computer so do not need AD. Is it p...
CONFIGURATIONS ON TEST ENVIRONMENT snort --v,,_ -*> Snort! <*-o" )~ Version 2.9.12 GRE (Build 325)'''' By Martin Roesch & The Snort Team: http://www.snort.org/contact#teamCopyright (C) 2014-2018 Cisco and/or its affiliates. All rights reserved.Copyri...
Hi Cisco Family, 1. Which is the most stable version(Currently running 9.4(3)3 on ASA5555) that is stable for VPN users and supports OKTA 2. How to integrate OKTA with ASA for VPN users. Thanks. Atif
Hello all, currently I'm troulbeshooting the following Topology: image 1 scenario: - All interface have access-list allowing the communication to every other IP range. - All the routes are known for each node. - The security-level of each interf...
