Network Security

Im trying free up space on an ASA 5506-x and was curious which files can be removed after installing updates. 102 -rwx 111641184 10:58:02 Apr 05 2019 asa992-40-lfbff-k8.SPA 103 -rwx 84 00:44:23 Apr 15 2019 .boot_string 11 drwx 4096 22:18:02 May 19 20...

I wonder if someone help me understand how the role assignment will work when we have two members only in our inter chassis cluster. AS per the documentation examples it only explains three node member scenarios, so I really need to understand from t...

Hi All, I would like to set policy-based routing on ASA 55XX. Http traffic coming from a vlan should be routed to an interface of a not directly connected content filter which is in a different subnet. Could you please share a sample configuration of...

Hi Experts, I have an ASA5516-X with protection and control license installed. I am managing it via ASDM but the issue is that Firesight Recommendation option is not showing up (in ASDM) in the intrusion policy. why? I am unable to download the rules...

The device is FTD mode, registered successfully to FMC, and sent the configuration correctly. After one day or so, the device automatically offline, synchronization button can not restore the online. Check the connectivity and port between FTD and FM...

Dears, good afternoon. I come throw this forum in order to ask for help with a problem. Here in my work I am replacing an ASA 5510 with an ASA 5525-x.ASA 5510, OS 8.0(4) and ASDM 6.1(3)ASA 5525-X, OS 9.4(4) and ASDM 7.2(1) I did all the necessery mig...

I'm setting up some 2110 devices using FMC for an organization that has a specific change control policy that I don't know how to address with FirePower. The policy is to set the initial configuration as a baseline, and periodically audit the active ...

Hello community I am trying to find some documentation about secure syslog. I have to send syslog messages to a server by using tcp encrypted traffic. I only could find some and very slim information about implementing on a cisco ASA, but it's really...

I am trying to get my ASA added to ISE as a network device, but having issues with the aaa-server config and output. Here is the config I have:aaa-server ISE protocol radiusauthorize-onlyinterim-accounting-updatemerge-dacl before-avpairdynamic-author...

The device is FTD mode, registered successfully to FMC, and sent the configuration correctly. After one day or so, the device automatically offline, synchronization button can not restore the online. Check the connectivity and port between FTD and FM...

Hi Peers I have a 2 Cisco ASA Firewalls, each in separate sites i.e. Site1 and Site2 that is running site-to-site vpn. This is working fine. Both the LANs are able to ping each other. Site1 LAN Network Address : 10.10.10.0/24 Site2 LAN Network Addres...

Can anyone explain why Phase 1 is bidirectional and Phase 2 is unidirectional in IPSEC VPN. I read in one book that Phase 1 uses shared symmetric key generated by DH and both peers uses same key hence it is bidirectional. so in phase 2, are we using ...

We have a customer moving to a new internet service.  The ISP will be managing the site-to-site vpn tunnels between the different locations.  At the main office, we are installing an ASA 5506-X to act as the gateway/router.  I have posted the configu...