Network Security

Firepower 9300 clustering

Hi Experts FP9300 running FTD image supports clustering. However, from document it is not clear about spanned etherchannels and local device etherchannels. Also which one to be used for CCL and which for data traffic? Do we need MC-LAG on the adjace...

Registering 4110 FTD on FMC via CLI

Hello All, I have FTD on 4110 Chassis and I want to know how can I register it to an existing FireSight via CLI. Thanks in Advance, Mostafa Ragab

Resolved! Port forwarding Asa5506

Hi, I'm configuring an Asa5506 and i have a problem with port forwarding. My configuration is: 2 internet access > Peplink Balance 20 (load balancer) > Asa5506 > lan networksIn the peplink, i have setup a dmz for the Asa (working because i can use AS...

Abrindo porta no firewall cisco Asa 5506 x

Sou iniciante com equipamentos cisco, e preciso abrir uma porta no firewall Asa 5506 x, alguém poderia me auxiliar com um passo a passo, pode ser via linha de comando? Obrigado

Interfaces for querying file disposition by hash

I have a customer who wants me to implement a workflow based on our product's findings for malicious content. The workflow involves querying various tools (sourcefire being one) for knowledge of a file by its hash, and alternatively notifying the t...

Why is NAT needed between interfaces.

- Running version 9.6.1 - Have 2 interfaces called internal (10.1.1.x) and server -(192.168.1.x) both security level 100. Have ACL to allow port 22 traffic from 192.168.1.15 to 10.1.1.47 Packet tracer phase 6 fails with this error: Phase: 6 Type: NA...

Resolved! Connecting one Cisco ASA to two Nexus switches

Hello, I was wondering if it would be possible to connect one Cisco to two Nexus data center access layer switches as follows (also see the attached diagram). Cisco ASA (Gig0/1) --- Nexus #1 (Gig0/1) Cisco ASA (Gig0/2) --- Nexus #2 (Gig0/1) There wil...

Upgrading Cisco ACS 5.5 to Cisco 5.8

Good morning, I was wondering if anyone had any step by step instructions on how to upgrade cisco 5.5 to cisco ACS 5.8? We are looking at doing this as an interim measure before we eventually upgrade to ISE If anyone has done this 5.5 to 5.8 upgrad...

Resolved! ASA two crypto tunnels with two ISPs

Hello, I have a quick question. Is it must to create two transformer sets for each crypto-map policies? or can I use already configured and being used in first crypto map transformer set to second crypto map policy? I have typed an example below. ...

5515x-mb vs 5515x-k9

i cant find what is the difference between 5515-mb and 5515x-k9,,,, we purchased a new one to complete the HA pair. anyone knows if they wont have any problems running failover between them?

unable to access FP MC via Web GUI

I have configured the CISCO FP MC VMware Virtual Appliance with the initial IP management address settings and I'm unable to access the Web GUI. I can ping the IP (I can see packets arriving on the FP MC via tcpdump) and when trying to access via htt...

ASA 5585-x and sqlnet connectivity failure

Hello We have replaced our FWSM with the cisco ASA 5585-x (SSP-60).We have configured them in cluster mode. But some Oracle applications are losing connectivity to the database after replacement of Firewalls, Frequently. The error on the applicatio...

What the function Configure monitor-interface on ASA 5585

Hi guys, What the function Configure monitor-interface on ASA 5585 mode transparant? Can you give me explanation. Best regards.

permanently disable IPS module in an ASA

Howdy, I have a bunch of older ASA 5510 and 5520 with ASA-SSM-10 modules installed. I was wondering what's the proper way of permanently disabling these modules without physically removing them. I was planning on removing the service policy that for...

Resolved! Bandwidth reservation for VC traffic in ASA 5505

Hi All,We have 10MB dedicated Internet BW and want to run VC device and due to heavy traffic and BW high utilization at peak hours, VC performance is not sufficient. We would like to reserve 2MB for VC device. Please let me know how much possible to...

Network Security

Forum Posts

Firepower 9300 clustering

Registering 4110 FTD on FMC via CLI

Resolved! Port forwarding Asa5506

Abrindo porta no firewall cisco Asa 5506 x

Interfaces for querying file disposition by hash

Why is NAT needed between interfaces.

Resolved! Connecting one Cisco ASA to two Nexus switches

Upgrading Cisco ACS 5.5 to Cisco 5.8

Resolved! ASA two crypto tunnels with two ISPs

5515x-mb vs 5515x-k9

unable to access FP MC via Web GUI

ASA 5585-x and sqlnet connectivity failure

What the function Configure monitor-interface on ASA 5585

permanently disable IPS module in an ASA

Resolved! Bandwidth reservation for VC traffic in ASA 5505

Announcing Resources That Guide You to Success

Renew.cisco.com just got refreshed, and it will make your life easier!

Community Helping Community: SOS Children's Villages and Nova Ukraine

Access Control Policy Blocks all traffic below block rules

How to keep SWSS coverage for eol FMCv classic (PAK) licenses

FDM SNMP setup

IPS blockinh HTTP to HTTPS redirect

How to change the interface mgmt from public ip to private ip FTD?

Intrusion Events

Is FMCv supported on vmware ESXI 8.x?

If upgrading ASA/ASDM software is FXOS software upgrade also needed ?

ASA 5520 9.0(4) NAT FROM INSIDE TO DMZ using Public IP

SNMP v3 encryption and authentication