Is there any simple way to determine the average packet size of IP packets or Ethernet frames that are traversing interfaces on an ASA running FTD code, I know we have the packet capture tool and could probably obtain a smallish snapshot of traffic a...
I do quite a few ASA to FTD migrations and many customers want a "Big Bang" approach. I am familiar with all the Migration tools that Cisco offer but they do have their limitations. The limitation for me is that I have a customer who has 200 static r...
I have an issue whereby I am migrating Juniper SSG firewalls that have multiple VPNs to Cisco FTD running FTD 6.2.3 software (Not ASA).
The problem is the Juniper SSG's terminate all the s2s VPN's on a loopback interface but the ASA cannot do this....
My SceanrioI have two IronPort deviecs and I need to enable TLS for certain external and internal domains. I belive I understand how to confgure this but really do not know what certificate to purchase. Therefore can anyone please help with the follo...
I have a cluster of 2 IronPort ESA appliances and one of these is faulty and will not boot. I am awaiting a replacement from Cisco.I cannot find an exact guide that explains how to re-instate the new appliance to cluster and therefore am making an as...
BEST POST EVER MATE - I have been trying 3-4 days to get 2 FTDs to use RSA Sigs for a S2S VPN and your post fixed it, TOP MAN !!! Thanks so much, its been driving me mad.
I totally agree I have customer with the same problem and they do use IPS and AMP. 1 cpu is 90% the other 3 are less than 20. This seems a non optimal setup especially with the advent of SASE. Having said that the ASA55x are being phased out I guess ...
This sounds great to me - if you do get time it would be great; however don't feel you have to.I would be happy to share in return a training document I wrote for my colleagues which is easier (I think), than following Cisco's guides. Its aimed at ge...
Hi thereThe issue is I am doing a migrstion from juniper to cisco and the junipers were using a loopback for s2s VPNs to terminate on. This is not the same as the real address being migrated to the FTD outside interface. The customer has so many S2S...
