Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello-. I am wondering if anyone could help solve a Telnet, SSH, and HTTPS connection problem between two remotely connected ASAs (firepower 1150), some intermediate devices to help connectivity between the two ASAs. Clearly Ping and Traceroute works...
Host-A can ping firepower from inside to outside in range (10.10.10.0/25) but not in range of (10.10.10.128/25). If wild card 'ip route' at core-switch is set to follow (10.10.10.10.128/25) then Host-A can ping all ip's in that range. But all ip's in...
I was trying to send the following command to WS-C6506-E as follows,>config t>ip routingThe Switch responded with: >Incomplete commandso,>ip routing ? Protocol Purge Route>ip routing protocol ? Purge RouteWould you please explain what all t...
Hello,Intermittent ping response between VTP Server and Firepower FTD device. Core switch vlan interfaces configured for vlan10 and vlan20, and switchport trunk allow vlan10 and vlan20 via direct layer-3 Firepower Inside-interface Sub-interface vlan1...
(FP)Firepower 1000 has routed sub-interfaces as shown in diagram. HostA is able to ping HostB, and vice-versa. FP Vlan20 responds to ping request from HostA. FP Vlan30 responds to ping request from HostB. All works with the following exception, FP Vl...
Thanks for your response,-Just so you understand, the toggling only happens if I manually change on core switch wild card route. For instance remove/replace 'ip route 0.0.0.0 0.0.0.0 10.10.10.124' with 'ip route 0.0.0.0 0.0.0.0 10.10.10.145' then onl...
Yes, as I thought so too. So I tried, the problem is the firewall is not responsive to it. On that flip side of that, if I toggle the route on core switch to 'ip route 0.0.0.0 0.0.0.0 10.10.10.145' then firewall only response to upper subnet ip's in ...
If the firewall is the gateway for 10.10.10.0/25 and 10.10.10.128/25, you probably have an interface or interface vlan on this networks, right?* Yes, that is correct the core switch has a 'L3 vlan interface' that points towards 10.10.10.0/25 and 10.1...
I would elaborate except that is very much the issue I am having. ACLs are inside to outside and outside to inside with nat exempt. The setup appears simple enough, but result complicated. I ran packet tracer from outside to inside on non-reachable i...
I think I tried this, since it opens network to all 1-254 and it did not help. The question is if perhaps in making that change on the FW there will be a need to do the same on all associated connected devices?thanks
