I have setup NAT and firewall on my C1111-8w8p router and I believe it is correct. Let me know if you see any other problems here. I am still learning. But now I need to block access to the router. Port scan of public ip shows 22, 80, 443, and 1720 o...
Forum Posts
Dear guys,#inter fast 0/2#switchport mode access#switchport port-security violation shutdown#switchport port-security maximum 1#switchport port-security mac-address sticky#swtichport port-security aging type absolute#switchport port-security aging ti...
HelloSo, I have to believe this is pure coincidence but I am having wacky issues. The Internet works, when it wants to. I can load Google, MSN.Com, ebay.com but, NOT Yahoo.com! I play WORLD OF WARCRAFT Game, and they do not load. They will sit endles...
I am looking for best practices regarding implementing a firepower-2110 only to protect my internal vlans. I have 10 vlans that I want to protects from the other 20 vlans. The firewpower will typically not have outside/Internet access. Is it bette...
Resolved! Port Security
Hi i have been studying about port security how do they set Port Security in an ISP how can they handle all the MAC-Flooding attack it would be really helpful if you put your resources or any books that can help evolve my knowledgebest regards.
Resolved! NAT for multiple internal subnets
Hello, would anyone be able to explain me how to configure NAT for multiple internal subnets on a 5505 firewall?I have 6 subnets 192.168.2.0, .10.0, .20.0, .30.0, .40.0 and .50.0. It's configured like this for all 6 subnets, but the address translati...
Hello currently,I using ASA 5512x for VPN (b2b)I recently purchase firepower 1120 for replacement I was able to export config file from ASA 5512xhowever it is not running on the firepower 1120,I think it is not fit between them(copy config and paste ...
Hello Team Is it possible to deploy cisco FTD in one arm mode.Can you please help with that ? RegardsIng OZ
We were trying to integrate our IBM SOAR with Cisco Talos to get threat intelligence and we get the following window. How can we get the API key.Is integrating with Cisco Talos/threat grid free?
Resolved! Firepower 1010 SNMP Issue
Hi,I recently upgraded a Firepower 1010 from v6.X to v7.X and with that the SNMP configuration I formerly did in flex config was warning as invalid. I've done the configuration via the API numerous times and never had any issues however most of the t...
Hi,I'm practicing practicing storm-control in Pnetlab but storm-control is not supported by existence switches, then i practiced on packet tracer. any solution to practice storm-control in Pnetlab i mean which L2 IOL support storm-control ?Regards
Hello, We have problem with Fragmentation on our FTD 1140 (Version is 6.6.4). In FTD we see "Fragment reassembly failed (fragment-reassembly-failed 910108". How I can find where is happening fragmentation?
I have an issue with talking from subnet to subnet. I also have no interest access from VLAN3. From the ASA here are my ping results: Type escape sequence to abort.Sending 5, 100-byte ICMP Echos to 10.1.2.134, timeout is 2 seconds:!!!!!Success rate i...
I am trying to upgrade an FTD that is not connected to an FMC. When I try to upload the .tar file with the upgrade, it tries to upload for several seconds and then errors out with the following error: "The method could not be performed on the resour...
Hi,is there a way to bypass SI for a specific ACP entry?As i see it , security intelligence binds to the ACP as a whole. But is there any way that an ACP entry to bypass the check of the security intelligence?Thanks,Ditter
