Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,we are using the Cisco C1300-24T-4G for some time and recently we found out that a new hardware revision has been released. The PCN Cisco provided states that only the label "country of origin" changed but we run into problems when we install firm...
LS,I have a ASA firewall (FP1010 running firmware 9.24). Problem: the ASA drops the ARP response when the source IP in the ARP request is set to "0.0.0.0".Is this a bug in the ASA software, why is it dropping the ARP response?Context:Host A on the ou...
Hi, I am stuck trying to get the following setup to work on an ASA5506 running in transparent mode.We use this setup to filter some traffic between our device and the corporate network. We use the ASA5506 (running firmware 9.14) in the following setu...
LS, after configuring a Cisco FP1010 running ASA software version 9.14(2) I get a warning when starting ASDM. "You have HTTPS enabled on a non-management-only interface, and you have not enable the Encryption-3DES-AES license. If you configure a feat...
Hi, I am using a Cisco FP1010 running ASA software. The ASA software on the 1010 runs on top of fxos.I installed 3 software bundles 9.14(1), 9.14(2) and 9.15(1) (using the downgrade disk1:/<image> disk1:/<config>)How can I manage these images?a) How...
Further investigation has shown that the problem is related to the SNMP. One of our tests reads via SNMP the port status from the switch. That information is used to check if the LAG is up. We found that the SNMP data (MAC address assigned to the por...
Feedback from Cisco support:"Based on the scenario we have have I can see that the firewall is acting as normally where no software defect is causing thisby default ASA only accepts ARP packets from IP addresses within the subnet of the connected int...
Thanks for the feedback.Looking at RFC 5227"In this document, the term 'ARP Probe' is used to refer to an ARPRequest packet, broadcast on the local link, with an all-zero 'senderIP address'. The 'sender hardware address' MUST contain the hardwareaddr...
The network switch of the customers is sending these ARP request to the hosts that do not have supplicant software installed and which got access to the network based on their MAC address. This works fine when the ASA is not installed but fails when ...
Hi Carl, enabling the 3DES-AES license is not an option due to export controls (see description).Can you explain how to disable HTTPS on "non-management interfaces"?I find the term "non-management-only" interfaces confusing? Any clue what it meant by...