Network Security

Can not use firepower interface

Originally follow manual can see firepower user interface in ASDM in ASA5506X but after watch youtube tutorial to set configure manager 192.168.1.1 keyisnotPAKbutmyimaginedtext then ASDM firepower user interface disappear how to make it appear aga...

ASA OS Upgrade

Good day all, I am trying to update our ASA 5525-X Firewall firmware from version 8.6 to the latest, I would like to know what to prepare for and what my current licenses allow me to do. This is the result of my show inventory below Licensed feat...

Resolved! ASA 5516-X With FirePower Services - App rate Limiting

Hi All I have what seems as a basic question but I have been going round the houses on it? We have some new ASA5516-x firewalls with fire power services running the latest 6.1 images. Note these are running the independent asa and firepower images a...

CSM causer issues

Hi,Firewalls I have upgraded our version of CSM to 4.17. We have always had issues with the built in backup, every Sunday it would the services and take the backup, however the services would never restart. We would have to go on the CSM server its...

Resolved! FTD CSCvk33923 High disk usage after deleting managed FTD device from FMC

Hi all, The workaround from Cisco is below: Workaround:> remove or move /ngfw/var/cisco/deploy/current-policy-bundle.tgz > No new deployment packages files will be created under tmp folder after that> Remove files created before by running:rm -r /n...

Firepower Dynamic Analysis

Hi guys, I successfully deployed firepower IPS. I'm just wondering what is the use of the button "Associate" in the Dynamic Analysis section? Thanks

Resolved! Traffic flow Through Site to Site VPN

Hi team, I've an Cisco ASA 5520, here is the show version summary: Cisco Adaptive Security Appliance Software Version 9.1(1)Device Manager Version 7.3(1)101 Compiled on Wed 28-Nov-12 10:38 by buildersSystem image file is "disk0:/asa911-k8.bin" All ...

Allow ICMP through Cisco ASA

I know this seems trivial, but I can't seem to figure it out. I have a solarwinds server internal of my network and I need to be able to let IPAM scan public IP addresses that are beyond the ASA firewall. How can I accomplish this?

updating firepower on ASA HA pair

Hi We have a pair of ASA in HA, they have source/firepower running on them managed via Firesight management centre FMC. Am i correct in thinking that within the FMC product update that Cisco Network Sensor Patch is the update for the ASA source/p...

Cannot Access ASDM on Cisco 5506-X

Hello, I cannot get ASDM to work on my ASA 5506-X. When accessing https://ipaddr/admin I get an error regarding unsupported ciphers/SSL or unsupported protocol. I have done troubleshooting according to this guide: https://community.cisco.com/...

FP/ASA 2130 Performance

Good day! We just recently upgraded from ASA 5520 to a ASA/FP 2130 Bundle and we're only seeing performance increase (through speedtest) about 25% increase. Management is wondering why we're seeing much more as the newer FP2130 is able of handling...

Hardening FTD VPN HTTPS server - possible?

As a security appliance facing the wilderness, it seems FTD could do a better job in providing a more secure HTTPS service for the RA VPN component. Things like bigger (or customizable) DH parameter size, a simple HTTP to HTTPS redirect, HSTS support...

ASA Failover issue with SFR installed.

Hello Experts, I have two ASA 5545-X boxes installed and both the boxes has SFR module installed though the license has been expired and we are going to renew it soon. Both the ASA boxes have multiple contexts and are fail-over pair. The issue...

Resolved! Doubt Cisco Router 2911

Hi Folks, I want to install in my environment 2 devices (1 active and one in standby) that will act as VPN hubs. I believe that 2 Cisco Routers 2911 will suffice for this. My questions are: -What license do I need to apply to get the maximum ...

Resolved! ASA NAT and NAT+PAT Command questions

Hello! I'm self studying ASA and I'm little confused with NAT and NAT+PAT commands. According to the book i'm reading, Dynamic NAT can be written as follow. object network NAT_POOL range 100.1.1.2 100.1.1.5 nat (INSIDE, OUTSIDE) dynamic NAT...

Network Security

Forum Posts

Can not use firepower interface

ASA OS Upgrade

Resolved! ASA 5516-X With FirePower Services - App rate Limiting

CSM causer issues

Resolved! FTD CSCvk33923 High disk usage after deleting managed FTD device from FMC

Firepower Dynamic Analysis

Resolved! Traffic flow Through Site to Site VPN

Allow ICMP through Cisco ASA

updating firepower on ASA HA pair

Cannot Access ASDM on Cisco 5506-X

FP/ASA 2130 Performance

Hardening FTD VPN HTTPS server - possible?

ASA Failover issue with SFR installed.

Resolved! Doubt Cisco Router 2911

Resolved! ASA NAT and NAT+PAT Command questions

Secure Firewall 1200 HA topology with 03 ISP link´s and SD-WAN

FMC 7.4.2.1: Missing active sessions in Remote Access VPN dashboard

FTD not recovering RADIUS server down

FMC 7.4.2.1-30 unsets/sets DNS domain-name every day

Cisco FTD SNMP OIDs for Site-to-Site and Remote Access VPN

Smart License lost after Powerfail / Reboot

Firepower 1120 has wrong (falcon demo) license active

L-CSF1230-TMC-3Y 's TOP SKU

FMC error has unknown CPU number

Cisco FirePower