Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a simple situation with multiple solutions, but a lot of what I've been finding online doesn't seem to work on my devices.I have three routers: A, B, and C. Router A is in the middle and connects to the other two. Each has several routes, ca...
I have an ASA pair configured for active/standby failover. However they don't seem to be generating syslog events related to failover status. Do I need some specific configuration for this? Are some contexts simply unable to log these events?Conte...
I have on my network two different models of Cisco ASA which seem to operate differently from each other. Can anyone confirm that this is the case?Device type A is a Cisco Firepower 4120 running ASA version 9.18.(4)34 in Multi-Context mode.When conf...
I am trying to connect a pair of Cisco 4120 Firepowers, each running a single ASA in multiple context mode. The Primary chassis is configured while the Secondary chassis has been wiped.Following Sheraz.Salim's advice, I set logging console 7 on the ...
2. and 3. are the exact things that I've attempted to do so far: it seems like the filter-list commands aren't working properly.First I tried an OSPF filter on Router C that should have rejected the route, but it still showed up. Then, I divided Rou...
Ah, thanks for the heads-up.I did confirm that both devices have sysopt permit-vpn configured. However there are some NAT rules that might be messing with the traffic. My next step is to take a dev firewall and wipe it to base configs, then see if ...
I'm not using ACP and didn't ask how to configure it. I know that the configuration works; I was asking if and why it is needed. You didn't comprehend the question at all, so your reply was confusing.Now that I understand it, it's still wrong because...
Thank you!Is there any config option in ASA 9.20 to make it behave like 9.18, and allow traffic without an interface ACL entry? This is causing problems with my security documentation, which currently can't handle firewalls with different ACL needs f...
