Hello Everyone,
I'm trying to work out a BGP design that talks to 3 different ISPs and 2 VRFs on a single L3 switch. I've been working this out for days in my CML lab with some minor success but I'm starting to wonder if what I'm trying to do isn'...
Greetings, I have an FTD 1140 that is already configured etc but I need to turn up a new internet connection on one of the other interfaces (fiber hand off so I need SFP) and it needs to become my new edge/outside interface. Is it at all possible to...
I've run into this problem multiple times and there seems to be no common denominator. It happens on different versions, different ASA models (even ASAv), different networks, etc.What happens is this, when I go to issue the ping command, when I star...
Hello,I'm trying to stage an FTD appliance to replace an ASA with Firepower that is currently in production. The FMC that controls it is also controlling an FTD HA pair. What is the best way for me to stage the new FTD appliance without disrupting ...
I am also in agreement with this assessment. How is it that a Cisco firewall, in the year 2024, can't use threat intelligence to look at a source IP and geo-block the packet BEFORE passing it off to the RA Handler? And IMO, having to use MFA to blo...
No you are spot on, that is exactly what I need. I also need each VRF to have its inet subnet advertised to both ISPs so NAT and internet hosts in/for each subnet work when the primary path goes down.
Hi @Harold Ritter ,
If I move those SPs into VRFs, will each VRF be able to get a default route from the respective SP in the other VRF when connectivity to the primary is lost? The whole purpose of this design is to provide internet redundancy and...
