Been getting some new intrusion events the past two days which I believe are false positives; or atleast not a true indication of the exploit it is detecting. Digging into what is triggering the event I am thinking that the Snort rule implemented in ...
Forum Posts
Hi All,I have two ASA 5520's version 8.2 in active/standby mode. I want to upgrade them both to the newest version.I know i can't directly upgrade to version 9.1. But can I jump straight to 8.4 then to 9.1? Do i have to upgrade 8.2 to 8.3 or worry ab...
Resolved! ASA Read only User
Hello Everyone,Can someon tell me the command for createing a user on an ASA 5500 running 7.2(3) that can only view the config but not make any changes?Thanks in advance! All replies rated
Hi All, In FMC, when I look in the Hosts Network Map, it does not populate with any MAC address entries. Every host discovered, is there under the IP tree, and if you drill down into these the MAC is present in the host profile. How do I get it to ...
When generating self-signed certs they default to 10yrs lifetime, is there a way to amend this on self-signed certs at all? I know can do a CSR and get that via a CA, but wanting to know if possible with a self-signed cert or not please, been searc...
Hello, Can FTD support multiple contexts, one where the mode is routed and the other where the mode is transparent? which version if possible? Thanks
HI all. I'm working on tools which will be automatically connect to Cisco devices using SSH.In https://www.cisco.com/c/en/us/td/docs/security/firepower/command_ref/b_Command_Reference_for_Firepower_Threat_Defense/using_the_FTD_CLI.pdf i have found th...
Resolved! Destination-based policy NAT on FTD
I have a Cisco FTD2110 managed by FMC running 6.2.3 I need to create a NAT policy that allows certain hosts on the internal network to reach specific destination IP addresses on the Internet, and be natted to a specific address. Can this be done wi...
hi, i deployed a new FMCv with no policy/rules yet. i have ASA+FP module which has FP rules that are currently active. my question is, if i apply classic license on the FMC and create FP access rules, which policy will take effect: the local rules c...
Hi all,I have an urgent Issue, i have ASA5545x with Firepower, but suddenly after power failure the module sfr and cxsc won't start up.Why this happened?I've tried:sw-module module sfr recover configure image disk0:asasfr-5500x-boot-6.2.0-2.imgsw-mod...
We recently started with the process of upgrading the firmware on all our Cisco ASA 5505. A couple of ASA failed to boot up when reloaded. Attached is the screenshot of ASA during boot-up. The firewall keeps on looping in the NIC initializing state. ...
We are setting up a test environment and are using our old ASA for the router. I've noticed a lot of traffic getting blocked, and most of it is from a strange source IP and the destination is 10.15.2.0 and that interface is disabled on the ASA so I'm...
Hello, I have 2 ASA 5585 SSP10 in active/standby configuration working. We have purchased 2 SFR modules ASA5585-SSP-SFR10 to be installed. My question is whether the boot and system software images are already factory pre-installed on the cards. Or...
Hello, 1st post. I wanted to know if anyone can point me to the direction locations or if you know the answer. In FMC under (System>Configuration>Audit Log) Under Host can I had two IP address ? What would the format be ? Should i use a ; : ...
Hi, I've remoted onto a device and I'm struggling to understand if I am actually on the firepower module or if it is integrated with the ASA. It could be that I am using an older version of code which is confusing me. Cisco ASA5525-X Threat Defense...
