i have an ASA 5508X, with firepower module, licensed URL filtering. I have multiple URL filtering rules configured via ASDM. I have a syslog server working and the logs are correctly created.   I want to enable logging of all visited URLs from all IP addresses. How can I do that ? ... View more

I have an ASA 5508X with the following configuration:   Those are routes towards my LAN (ASA port 1): route inside 192.168.20.0 255.255.255.0 172.1.1.6 1 route inside 192.168.21.0 255.255.255.0 172.1.1.6 1 route inside 192.168.22.0 255.255.255.0 172.1.1.6 1   This is the link to my Internet Router than goes to ISP 1, from ASA port 2: route outside 0.0.0.0 0.0.0.0 172.2.1.1 1  Basically, all current VLANs go out through the router and to ISP 1. I have a secondary ISP (172.3.1.1) and I configured the correct settings on the ASA port 3 (interface outside3) I created a new VLAN 192.168.23.0 . I want to route the new VLAN to the new ISP.   Is this the correct approach : route inside 192.168.23.0 255.255.255.0 172.1.1.6 1 route outside2 192.168.23.0 255.255.255.0 172.3.1.1 1    ... View more

I have an ASA5508X with 8 ports. 1/1 is WAN (172.16.0.1 to router) 1/2 is LAN (192.168.1.1 to switch) 1/3 is directly connectd (10.0.01) to a PC I want to use for monitoring traffic (10.0.0.2). 1/1 and 1/2 have complex access lists on them. On 1/3 I created an ACL to allow all IP traffic from PC I have tried using the ASDM wizard from the GUI to monitor one of the 2 interfaces. It did not work. Here is what I did: - I started the wizard and selected the ingress inside 1/2 interface with 0.0.0.0 as both source and destination (that should be all traffic, correct ?) - I selected the engress monitoring 1/3 interface  with  0.0.0.0 as both source and destination - I pressed next 2 times until the menu that can start the traffic capture - I pressed start to capture traffic. Getting capture buffer works. - On the destination PC I stared wireshark and selected the 10.0.0.2 NIC to capture traffic. Nothing is captured. I see only a few ARP CISCO broadcasts from time to time but no actual traffic is shown.   What went wrong ?   ... View more

I'm making a CISCO router get the time from country specific ntp.org's servers (GMT+2). It functions correctly but does not adjust to daily savings (GMT+3). Not a big problem here. I don't want that anyway. Then, I synced the ASA firewall and Cat switch after the router. All good here, time gets transmitted again with no DS. Now I'm trying to also sync the time of the Firepower module. Here I have a problem: the Firepower seems to be able to read the time from the Router, since it answers correctly when I use something like  ntpdate -u RouterIP, but the time shown is UTC/GMT instead of UTC/GMT+2. To recap: Router shows correct GMT+2 time. Firewall  shows correct GMT+2 time. Catalyst  shows correct GMT+2 time. Firepower shows incorrect GMT+0 time. Note: using the localtime parameter instead of UTC had no effect. How can I make Firepower sync to GMT+2, like the rest of the devices ? ... View more