I have ASA5506-X (9.8.2) with firepower services. I'm working on the initial set up of firepower and am confused on how the IP addressing should be done. The ASA has already be configured with BVI / all inside interfaces set to 192.186.2.1 (which is ...
Forum Posts
Saving your changes:For an ASA with firepower services, if you make a change to firepower CLI configuration such as change IP address in it or something like that, does the change get saved automatically even if you power cycle, or do you need to typ...
I only know how to manage the firewall through the GUI ASDM. now it's not working since last firefox update. I tried other browsers but nothing helps. I get this message in every browser .. Cisco ASDM 5.2 - Error "Cisco ASDM 5.2 encountered loadin...
Resolved! NTP server and & DHCPD OPTION 4 on ASA
On ASA 5506-X version 9.8.2, I have configured NTP:NTP server x.x.x.x source outside(Where x.x.x.x is an external public NTP server ip address). I also configured timezone on the ASA as I read it should be relatively close to the NTP time, though not...
It's day two of the adobe zero day with a exploit code in the wild. CVE-2018-15982 is yet to be discussed at Cisco Talos, and: For that matter the suspect C2 IP isn't even published, thus our FTD identifies the address as still: "Risk Unknown". But ...
Resolved! Dynamic state rules
Hello all,I have a question regarding the dynamic state of a Policy rule: If i create a dynamic state that disable that rule for 10 minutes if the source is 192.168.1.1 after 3 counts, does this new state apply to all source & destination or only th...
Firepower 6.2.3.7 I have a basic Snort rule that is functional, but when it fires the intrusion event comes in as an impact 3. If I read the documentation correctly I should be able to customize the rule to force it to be reported as impact 1 using...
Dear all I have issue between vlans. I created 8 vlans by port-channel In Cisco ASA 5525. I tried ping between two vlans but ping showed us "time out". Could you suggestion how to configure my asa than between two vlans is working .Sorry my bad e...
Hi, Considering the bellow scenario where i have a multilayer connecting to 2 different MPLS providers (international and local)We are receving and advertising routes via ospf to the MPLS provider. If we would like to place a firewall in between the...
we want to upgrade ASA-CX software running on ASA 5520(only software module on ASA 5520), but I found ASA-CX software under ASA 5520 is ASA 5585-X CX software can I use this 5585 asa-cx software on my ASA 5520 does I need upgrade ASA system software ...
Hi All,I have a site in the field that uses a Sonicwall that I need to transpose to Cisco speak and replace it with an ASA 5506. This site has 4 WAN connections. I think that's overkill but I can't influence changing it yet. What they are doing is ...
Resolved! FTD vs FMC
Hi Guys, To manage Cisco Firewalls (ASA or Firepower 4000), we have two ways: 1. FirePower Threat Defense software (FTD) 2. Firesight Management Center (firepower management center). My questions: - What is the difference between them? - Using ...
What is the best way to move the configuration from ASA5506 to ASA5508 (when we firstly update to the last and same software on both devices)? Thank you.
We have a couple Firepower 2140 NGFW's that I have done basic configuration to allow them to be managed from my inside network and allow them to connect to the internet and register to Cisco Smart Licensing. No production traffic is going through th...
Hi My setup is at follows Inside-------Firewall | | Guest DMZ Now if i wanted to VPN (anyconnect) from Guest DMZ to Firewall on the outside public address - is it possible? we ...
