About swscco001

swscco001 · 03-31-2025

Hello everybody,I have to upgrade the ASA image on a Firepower 2130 cluster.At the verify I was told I have to upgrade the system image before: ENAM-ASA02 /firmware # verify security-pack version 9.20.3.16 The system is currently installed with secu...

swscco001 · 03-21-2025

Hello everybody, our customer has a ASAv runnig rel. 9.16(1)28. Our monitoring has send an error message that an expiredidentity certificate (see screen dump attached) is still in the configuration. I tried to delete it from the interfaces within the...

swscco001 · 03-13-2025

Hello everybody, our customer has a Firepower 2130 running ASA OS rel. 9.14(4)24 with hundrets ofS2S tunnels. One of the tunnels cannot be initiated by the peer firewall (Meraki). The Firepowercan initiate the tunnel without problems. The customer th...

swscco001 · 02-24-2025

Hello everybody, our customer has a HA-cluster of two Firepower 2130 running rel. 7.2.5. The FMC is running rel. 7.4.2.1. The wildcard certificate will expire at March 8th. I got the new wildcardcertificate for the customer domain. I could enroll the...

swscco001 · 02-06-2025

Hello everybody, I have just updated the ASDM from 7.19(1)95 to 7.22(1) om a ASAv running 9.19(1)28. previous ASDM: 2808 196058416 May 29 2024 16:15:30 asdm-openjre-7191-95.binnew ASDM: 2820 204561552 Feb 06 2025 14:30:58 asdm-openjre-7221.bin I have...

swscco001 · 03-31-2025

Hi Marius,this answered my questions completely!I did the same at a Firepower 4115 cluster and wondered why I did not find the FXOS system image filein the download section for the Firepower 2130.Thanks a lot! ByeR.

swscco001 · 03-26-2025

Hi nspasov, thanks for your reply! I understand that I cannot delete a certificate that is currently in use. On both interfaces the valid certificate with trustpoint ASDM_TrustPoint4 isassigned (see attached screen Dump). I think you point on the con...

swscco001 · 03-13-2025

Hi Rob, thanks for your fast reply!we should not go back to IKEv1 because this in medical environment because IKEv1 is using the unsafe SHA.Thanks a lot!

swscco001 · 02-09-2025

Hi Sheraz,thanks for your reply!At vASA or ASA55XX series the image file has the .bin extension. So the conclusion for ASA-images is:.bin files (vASA or ASA55XX series): use the ASDM or the ASA CLI .SPA files (Firepower appliances): use the Chassis M...

swscco001 · 02-07-2025

Hi Marvin, thanks for your fast Reply! That means that the guide:https://www.cisco.com/c/en/us/td/docs/security/asa/upgrade/asa-upgrade/asa-appliance-asav.html#id_27300is wrong in this matter. Is it correct to say that *.SPA files cannot be copied t...

Member Since	‎04-16-2015 02:40 AM
Date Last Visited	‎04-15-2025 01:03 AM
Posts	246
Total Helpful Votes Received	66

User Statistics

User Activity

Question about download and install a Firepower chassis system image

ASA: Unable to delete a expired identity certificate from an interface

ASA: S2S tunnel cannot initiated by the peer firewall (Meraki)

Firepower: Unabble to add a wildcard certificate to a HA-cluster

ASAv: ASDM upgrade causes error "Unable to launch device Manager from"

Re: Question about download and install a Firepower chassis system ima

Re: ASA: Unable to delete a expired identity certificate from an inter

Re: ASA: S2S tunnel cannot initiated by the peer firewall (Meraki)

Re: FPR-2110 (ASA-Image): Correct option at image upload?

Re: FPR-2110 (ASA-Image): Correct option at image upload?