Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I hvae a new FMC 6.6 VM and 2 new 4115 NGFWs. In determining whether to use high availability for FMC, what is the effect of a failed single instance FMC? The 6.6 FMC documentation only mentions you lose event data if you only have one FMC and it fai...
I have 2 new NGFW 4115s with the latest software. From the documentation, it seems you should be able to create multiple cluster container instances on these. But creating a cluster instance only allows a native instance and consumes all CPUs. I can ...
Hello,
I want to restrict access to remote access users based on group membership. There could be 100 at some point.
LDAP attribute maps work, but I would have to update the LDAP attribute map and create a group policy for each group.
DAPs work also ...
I have a simple scenario; an ASA just for just inbound AnyConnect clients. I have 2 ISPs connected to the ASA and wish to use both simultaneously for inbound connections by simply configuring the DNS name ( ISP IP address on ASA) to one or the other ...
I have a question about routing an access layer switch rather than trunking. Like the old WAN config, I setup a stub network between routers. This is the same for switches? So, in my configuration, I would need a stub network between the access laye...
Thanks, this makes sense.I can do port-channel on the access layer switch. Howver, the uplinks go to 2 separate distribution layer switches where I could not port-channel ports on separate switches. Unless I have VSS on the distribution layer switche...
Thanks for the information!One other scenario I'm facing is that I will be routing between 2 redundant 6500 core switches to a production network with another 2 6500 core switches.The new production core switches have VSS and I can configure a port c...
Jon,Thanks, some excellent points. I will take more time to consider this. I think looking at traffic flows between VLANs could use some redesign; typically on these factory networks, latency becomes an issue between, PLCs, and HMIs. I'll look at IP ...
I had the same problem. In the previous post that had the link to the deployment guide there is a note that says:"The Management and AP Manager VLAN (VLAN 60) is tagged and are not configured as the trunk's native VLAN,"What I had is the management I...
