Hi everyone,I've been experimenting with ZBFW using three routers, all running 15.3(3)XB12 and have run across an interesting problem. R3(Client= 3.3.3.3) -----Fa0/1.33 [R1(ZBFW)]-Serial1/3 ----- R4(Internet-Rtr = 4.4.4.4) When class-maps are configu...
Forum Posts
Resolved! Using 5506-x ASA as switch
I would like to configure my 5506-x with port 1 as outside and ports 2-8 inside on the same LAN (same security levels for all) with the ASA acting as the DHCP. I'm not sure what this would be called. Can anyone port me to a relevant guide or document...
Hi experts, I have a question about API capability for pcap file. I want to deploy the following workflow system. 1, Firepower filter and capture malformed packets in accordance with IPS rule. 2, Firepower management center sends syslog alert t...
Resolved! External static ip setup for 5506-x asa
I'm trying to configure the outside interface of my 5506-x. I have a static ip from my ISP (Comcast) that I want to point to the outside interface of my ASA so that I can setup a VPN with a remote office. Does the ASA support NATing (meaning that my ...
As per title. Firepower 6.3.0 been out for 8 days now. Anybody tried it in production yet? What's the lowdown on the good, the bad and the ugly? We have a LARGE customer deployment that we need to upgrade from 6.2.2.X. We're trying to decide wh...
Hi All, I am adding a FMC to an existing setup of 3 independent firewalls (one Firepower 2140 (NGFW Version 6.2.3.3 ) and 2 ASA 5506 (NGFW Version 6.2.3.1)). I tried searching however didnt find an easy way to import their existing configuration to...
Hi,We are using a Cisco ASA/ASDM router/vpn 5500/6.2. Also a big IP in our environment.Recently I added a pool and Virtual IP for one of our web url into BIG-IP version 12.1.2 Build 0.0.249 We are able to access the url using the IP address but not a...
Has anyone upgraded to Firepower 6.3 yet? If so, what version did you upgrade from? Any issues? We are running 6.2.3.6.
Dears, Does any one knows how to configure distribute list with flex config to filter eigrp routes in Firepower 4110. Regards,Graniti
Hi everyone, I have setup my ASA5506 as illustrated above. GigabitEthernet1/1 and GigabitEthernet1/2 are set to get IP assigned by 2 seperate ISPs through DHCP.I have my workstations connected through a switch to the GigabitEthernet1/4 of the ASA an...
Resolved! firepower 9300 security module issue
hi all, we have an issue with firepower 9300 security module 2.when we are seeing the hardware status it is showing unassociated. we referred the Cisco document it showing " Unassociated—Thesecuritymodule/engine doesn't have a logical-device associat...
Hi everyone, I need to set up a site-to-site VPN between Main and Branch Office.These sites have a Lan-to-Lan, so the new vpn will be a backup. I already created the cli code, but how to set it as secondary? Is there a way to configure metric? Thanks...
I have followed the guide on the link below to configure direct authentication on ASA. HTTP part of it works fine but HTTPS doesn't. http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/113363-asa-cut-through...
Resolved! Changing interface names on ASA
Hi Guys, I have an ASA 5516 with 2 WAN links, one is named outside and the second name backup. Backup line used to be just 4G dongle to keep us online if main line dies, but it was upgraded to a nice, 300/300 mbit connection. The main line is actual...
Hi, dear: I have met an issue when I enable ipv6 feature on ASA 5512. I created prefix 2001:100:101::/64 for interface gi0/0.169. caowen-asa5512(config)# show run int gi0/0.169 ! interface GigabitEthernet0/0.169 vlan 169 nameif inter_vlan169 ...
