Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,
We currently get all of our logging needs with our ASAs by using "logging host" command to send all firewall traffic to an event collector where we can search and correlate traffic events. I'm working to determine if there's any advantage to ...
I'm having trouble finding any decent guides to upgrading a 2960X stack with the .BIN file. The official Cisco guide goes over the process with the .TAR file, but it's not the same. Wondering if anyone has had any experience with the .BIN upgrade pro...
I've been searching the Internet for an answer to this for quite some time and unable to find anything on it. What happens if you do not configure the 'class-default' command in a 'policy-map' that you apply to an interface? Will non-matched traffic ...
We just recently migrated to a new network which consists of Cisco 5585-X ASAs and Cisco 4500-X routers. The nature of our network involves Oracle traffic, utilizing Oracle TNS protocol to communicate, to send traffic to it's gateway within an ASA co...
We use a pair of ASA 5585's in a multimode active/active setup. I'm able to set up and access the management interface for the admin context easily, but I'm having trouble setting up management interfaces for the other contexts. I'm sure I'm missing ...
So don't listen to Cisco or anyone telling you to do a "redundancy reload shelf" and take a 5-10 minute outage as both switches reload, there's a way to do a 4500X VSS non-ISSU upgrade with less than 40 seconds of downtime for the links. I've done th...
So don't listen to Cisco or anyone telling you to do a "redundancy reload shelf" and take a 5 minute outage as both switches reload, there's a way to do a 4500X VSS non-ISSU upgrade with less than 40 seconds of downtime for the links. I've done this ...
Thanks Hozaifa. So I'm not sure I conveyed my last question correctly. If default log levels are used for both global and ACL logs, which I believe is log level 6, then is there any point to using ACL logs, other than if you want to add additional lo...
So to make sure I understand, using the global "logging host" command would be the same as having "log" at the end of every ACL, granted that default logging levels are used in either situation?
