Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have found the below article which describes how to create a workflow in FMC to display hit count for access rules.https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/211515-Configure-Firesight-Management-Center-to.ht...
Hi,We are using Cisco ISE 2.0.0.306. Global password expiry is set to 45 days. But we want specific users not to use this policy. We want them to never expire. This version of ISE does not have any disable policy per user in user configuration tab. I...
Hi,We are using Cisco Anyconnect Security Mobility Clients with Cisco ASA 5585. There are two types of users here and each type having multiple Anyconnect groups. One type of users are inside organization users. These users do not have admin privileg...
Hi all,I am trying to configure a route-based VPN with Microsoft Azure. I was reading the document in the link below: https://www.cisco.com/c/en/us/td/docs/security/asa/asa97/configuration/vpn/asa-97-vpn-config/vpn-vti.pdf In this document, VTI inter...
We have a WS-C4507 (Version 15.2(1)E3) switch in Office LAN which has an ACL with almost 11,000 ACEs. Office LAN is going down sometimes. For the past few days, CPU Utilization is staying at 99% during most of the office hours. Also in log the follow...
Thanks for the reply. We use that option. But only seeing the number of hits does not meet my requirement here. I need the source IP, destination IP and port for a particular hit. Thought connection event retains this info for s short time. Combinin...
Hi,Thanks for your feedback.We have some access rules with larger block/any keyword in source, destination and port field. We want to find out the specific IPs/ports in those any or larger blocks which are actually being used or getting any hits. The...
Hi,Thanks for your detailed reply. Actually VPN filter with split tunnel worked.I tried just after changing the config. Previous session was there. So VPN-filter ACL was being bypassed. But extended ACL as split tunnel does not seem to work. My vers...
Hi,I had the same issue. I used the procedure mentioned here. Used both a VPN-filter and split-tunnel. Now all the IPs mentioned in split tunnel are accessible from VPN. Even if I block some IP in VPN-filter, it's still accessible while connected to ...
