Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
A security scan shows this as vulnerable. Why is the status terminated? Is there a fix for this?Cisco Bug: CSCwc79441 - Remove weak kex algorithms offerred by Netconf SSHIt is not a duplicate of CSCvz22951, which address removal of cbc for "encrypt...
I have WLC5520 8.10.185.0 (latest version), scan shows that it is uing insecure TLS 1.2 Ciphers CBC & SHA. Vulnerabilities:TLS_RSA_WITH_AES_256_CBC_SHATLS_RSA_WITH_CAMELLIA_256_CBC_SHATLS_RSA_WITH_AES_128_CBC_SHATLS_RSA_WITH_CAMELLIA_128_CBC_SHA=====...
I open a ticket for a vulnerability. My choice was to fix the cert or disable https on the spines and leafs. I chose to fix the cert. I'm not too sure if the below works.HOW TO DISABLE HTTPS ON SPINES & LEAFS, FROM TAC"A maintenance window is requ...
Thanks Dustin,However, it is not a duplicate of CSCvz22951, which address removal of cbc for "encryption algorithms". CSCwc79441 is to remove sha1 or weak "kex algorithm", there are currently 6 options in kex algorithm Cisco devices can use.
Issue: DNAC Assurance Health always showed this 1 device (switch) having health issue, the port used to be an uplink and the uplink to the switch was removed. My version of DNAC 2.3.5.5 doesn't have the option to delete the "Inter-device link"DNAC ...
I wanted to clear over 1000 acl lines on all 8 fw, I finally was able to find it.On FTD, I tried "clear access-list <name> counters" and it did not clear the acl hit counts. I had to go to cli in ftd "clear rule hits" and refresh on acl in FMC (why d...
