Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi Experts, I am trying to integrate FMC and FTD administrative users to authenticate via Cisco ISE radius type authentication. Cisco ISE has been configured with AD group sync and also FMC and FTD devices are added in ISE to use radius authenticatio...
Hi support team,We have 2 FTD named EXT1 and EXT2. Before HA BREAKEXT1 - PRIMARY STANDBY READY EXT2- SECONDARY ACTIVE Now I did BREAK HA from FMC for the high availability. I'm able to see no connection on EXT1 but the previous active is now handlin...
Hi everyone, I would like to get a expert advice on Cisco ASA site to site VPN tunnel failover between two different site firewall. I know vpn- loadbalancing is used for remote access VPN users with 2 ASA configured for load balancing and in case of...
Hi security experts,Im new to real exposure for security implementation.Do we need to NAT exempt for site 2 site vpn traffic between asa firewall with new implementation on iOS 9.6 version of asa code. In site 2 site communication which addresses wil...
Hi ,
We've Video conference device which is flapping when i connect to a port configured for both data and voice VLAN. But when I configure the port to only data access VLAN it is working properly without drop.
When port is configured in both data an...
Thank you for your reply. In this case each site having the budget to have two firewall on each side, then it would be only active/standby scenario? or can we have any other scenario like both firewall at same site without failover configuration ? Is...
Thank you RJI for all the response as it explained me crystal clear.We need a NAT exemption only the same device doing NAT for other traffic on outside interface. If a new box or only VPN traffic box we don't need NAT exemption.One final question , i...
Thank you for explanation.From your guidance I assume if a ASA is acting as a NAT device for internet access and also for L2L VPN we need to do NAT exempt for the VPN traffic between sites.If we are doing VPN CONCENTRATOR or only terminating site 2 s...
