Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Issue: How to restrict FTP commands to allow downloads from certain ftp servers. Default ftp inspection allows all ftp commands and allows all downloads/uploads. If you would like to restrict downloads or uploads to and from certain ftp servers, plea...
Since the failover link is failing. You should restore the failover link as soon as possible because the unit cannot fail over to the standby unit while the failover link is down.Here is a link to document which explains failover actionshttp://www....
Since the attack has already taken place. If you are not allowing these IPs ASA will be blocking them anyways. The best course of action will be to have it blocked upstream and if upstream is your service provider then talk to provider to have the I...
Your FW is inspecting all outgoing http traffic so that return packets are allowed through the acl applied inbound on the interface. The return packets will have the source port of 80 so its possible that if there is man-in-the middle attacks somebod...
You cannot create etherchannel from sub-interfaces however you can create sub-interfaces of etherchannel interface as this essentially becomes a single bundle port so creating a sub-interface on physical or etherchannel interface is same.
