Asa 5525x with 9.1 code with multicontextMode enabledI enabled traffic between interfaces with same security level on admin firewall context . This works but when I disable this feature and apply inbound ACLs to these same interfaces log indicates pa...
Forum Posts
Hi, I have an FMC managing multiple FTDs each with a different set of ACP. There is a common rule base that applies to all the devices so I have inherited that rule base to all the ACPs. However the intrusion policy applied on this common rule base...
IoT Device 2 NAT Sessions for WebSockets, firewall blocking traffic when 2 Static NAT entries are made --------------------------------------------------------- There is this IoT device that I have been working on getting to work. One engineer took i...
I need to create NAT where lets say a source from an outside IP is 33.33.33.33 to coming inside to lets say my public IP 1.1.1.1.1 which is mapped to 172.10.10.1 port 300. So question is, how do I create nat rule saying if source IP is coming from 33...
Configuration on ASA 5506 and windows 10 client is pretty standard but the debug shows that the session drops after completing phase 2 What could be the issue? I have tried all registry fix as suggested on other discussions but it didn't help. Belo...
Hello and sorry for my English, Officially, the agent can be install only on Windows 2012 but win 2012 will have no more standard update, win 2012 is out of date ! i see on this forum people had installed the agent on win 2016, it seems to work !...
I am having trouble understanding upgrade options for Firepower 2100. I am runnign FTD software 6.3 on it. To my understanding it cannot be upgraded from FCM, which is an option for Firepower 4100 and 9300 series. I am trying to use FDM to upgrade i...
Resolved! ASA management over IPsec VPN
Hi There! Has anyone configured a dedicated management IPsec tunnel for ASA management which is in Active / Standby mode? For a standalone device it is working fine as per the documentation by applying the management-access inside command etc... Howe...
Hello. Could anyone please tell me why encrypted zip file seen on log as ZIP ENC but encrypted rar file only RAR. I send from one network to different network in order test file policy. When i send encrypted zip file it is written ZIP ENC on logs. B...
Hi. I recently set IPS on firepower but portscan detection catche traffic from Domain controller to host device that is used to watch cameras. I dont understand what kind of traffic is it to trigger protscan detection. What could be send from domain ...
Hello geeks, My team and me implement à new solution for IPSEC and VPN SSL over anyconnect v4.6.We use the ASA FW in the mono context mode to have the two features IPSEC and VPN SSL. The problème is that when we use the VPN SSL the connection is goo...
hi, i am trying to run the IPS on my 5515-x and cannot connect to it via http. I have never done this before and am quite lost. Would someone be able to guide me through the process? here are the responses i get when on the session terminal for IPS...
hi, i am trying to run the IPS on a 5515-x and cannot connect to it via http no matter how i try I have never done this before and am quite lost. Would someone be able to guide me through the process? happy to provide any details to help resolve the...
Resolved! ATM connection via one external address
Hi all!! I need advice There is a task - to connect 2 ATMs in the corporate network. Isolate from the local network. The question is - if I will use one external address for two ATMs - how can I connect from OUT to each for maintenance and managemen...
Hi I am trying to configure transparent firewall see below diagram, simple setup 3 vlans and the svi is on the router, but when I trying to ping from the vpc1 to it's default gateway 192.168.1.1 and it just doesn't work, I can see the arp on the rou...
