The Cisco ASA provides advanced stateful firewall and VPN concentrator functionality. It has long been the industry standard for firewalls. For more information on this product, seehttp://www.cisco.com/go/asa.
Firepower Threat Defense provides unified next-generation firewall and next-generation IPS functionality. In addition to the IPS features available on Firepower Software models, firewall and platform features include Site-to-Site VPN, robust routing, NAT, clustering, and other optimizations in application visibility and access control.Firepower Threat Defensealso supports Advanced Malware Protection (AMP) and URL filtering. For more information on this product, seehttp://www.cisco.com/go/ngfw.
Cisco's Migration Tool allows you to convert specific features in an ASA configuration to the equivalent features in anFirepower Threat Defenseconfiguration using the easy to use wizard based Migration Tool. Download the Migration Tool here . Release notes here.
Hello Team, We would like to seek your assistance in identifying if ACS connectivity to public ip is legit. We monitored that it was connecting to the said IP using port 25. How can we block from acs using port 25.
Hi. Yesterday I configured URL category for Adult URLs. But when I tested it by sending some porn urls from personal email to corporate email, URL category wont block it. Please help me to solve this issue
Hi everyone,We've been struggling in this situation for a few days.We have the following scenario for our ISE deployment:User and Machine Authentication with EAP Chaining, using Certificates for both, Supplicant is Anyconnect NAM. We are in PoC stage...
Hi All, I currently would like to export all my object groups and access-lists to excel. In the access list I would like to get the access list name and interface as well. I do not want to copy/paste since it is difficult for a person who do not know...
Hi guys,Please see the attached diagram. This is the network setup of one of our customers. All sites use Cisco ASA firewalls. They have an existing VPN to site A with multiple subnets & variable subnet masks. I've only shown a small number of subnets...