I have the following problem on an ISR 2911 :
I have a dynamic NAT for all the inside users :
ip nat inside source route-map My_Lans interface GigabitEthernet0/0 overload
Where My_Lans deny all traffic to my VPN connected sites and permit e...
I have the following problem :
In my datacenter I have an Internet gateway, my ASA, a local network and another gateway to my private network (MPLS).
The gateway to my network is on the inside network of the ASA.
I also have a lot of servers on ...
I'm trying to setup a new ASA5525-X.
I need to install my licenses but right now, I can't see the FirePower configuration tab.
I can see the FIrePower Status tab.
The sfr is running version 5.3.1-152
I did the basic configuration so
- GE 0/0 is ...
The configuration is already very complex with lots of ACL.
Actually, I already have an ACL on my outside interface.
I sought about a route-map on the nat but I can't figure out how to make it works.
I also tried to use a dynamic nat with a poo...
This doesn't work,
It effectively block all incoming trafic but it also block all answers to my server.
So I can initiate a connection (I can see it with sh ip nat translation) but the server doesn't get its answer.
So, I'm ordering the 2x VM.
In the meantime, I'll get an eval licence.
Question : Can I manage the other functions of the ASA with FireSIGHT management center ? I have to configure lots of FW rules and different VPN (site to site and remote access w...
The ASA was delivered with version 9.2(2)4 / ASDM 7.2(2)1
The FirePower module is version 5.3.1-152
With Marvin answer, I know that I have to upgrade, so, as soon as my SmartNet will be active, I will do it.
Should I upgrade the ASA or the FirePower...