About atsukane

atsukane · 09-06-2023

Hi All,I've been tasked with migrating DMZ from a legacy ASA to a FMC managed FTD.Currently there's a transit LAN to route DMZ destined traffic to the ASA.We have a 20G (2x10g) port-channel between the core switch and the FTD and all zones listed bel...

atsukane · 09-01-2023

Hi All,I've been tasked with upgrading a VSS pair of C6807 2T SUPs from 15.2(1)SY7 to 15.5(1)SY10, the rommon version is V12.2(50r)SYS3.I've upgraded another VSS pair from 15.5(1)SY8 to 15.5(1)SY10 in a different datacentre without upgrading the romm...

atsukane · 08-31-2023

Hi All,We've recently provisioned secondary Internet circuit which is connected to an interface on a FMC managed FTD2140 HA pair, running v7.2.4.I was hoping to assign the existing ISP1_OUTSIDE Security Zone to the new interface so there's no need to...

atsukane · 07-12-2023

Hi team,Back in 2017 a Cisco Employee had suggested that there may be APIs available in 2018 to enable communication between CSPC and SN.Someone then asked a question in 2021 on the same thread, but there's no response for it hence starting a new thr...

atsukane · 07-10-2023

Hi All,I'm trying to configure AnyConnect VPN using Azure AD, MFA and SAML.FMC and FTD are running 7.2.4.I've followed this YouTube channel, first thing on the FMC is to enrol CA only certificate using the BASE64 cert downloaded from Azure AD, ID cer...

atsukane · 10-25-2023

Apparently there will never be APIs from SNTC collector (CSPC) to Service Now. I was after same thing, but since there was no response here I started a new thread below and had from Cisco Employee.https://community.cisco.com/t5/smart-net-total-care-p...

atsukane · 10-25-2023

Forgot to say that this really helped and working as I hoped, thanks very much!

atsukane · 10-25-2023

@Rich R So I did upgrade on a few more ISRs and you are right here, I've saved the boot variable to bootflash:packages.conf, saved config and then proceeded to upgrade ROMMON and IOS-XE as before.This time single reload was enough and both upgraded s...

atsukane · 10-24-2023

Hi @Nikolaj Pabst Thanks for this post. Can I clarify that for a standard variable set HOME_NET can be RFC1918 and public IPs owned by our firm.Then a separate DMZ variable set can contain the same but exclude DMZ subnets?Many thanks,

atsukane · 09-28-2023

Thanks @Leo Laohoo this was very helpful upgrading ISR4431 from 3.16.9S to 17.06.05 and also upgrading rommon.I initially followed the steps described here, which has worked on one of the two ISRs but failed on the other as for some reason the bootva...

Member Since	‎05-03-2016 04:05 AM
Date Last Visited	‎11-01-2023 11:37 PM
Posts	98
Total Helpful Votes Received	66

User Statistics

User Activity

Migrating DMZ from ASA to FTD

Upgrading C6807 2T SUPs from 15.2(1)SY7 to 15.5(1)SY10

Interface/Security Zone mapping and NAT question

CSPC and ServiecNow communication

Configure AnyConnect on FMC with Azure AD MFA with SAML

Re: CSPC and Service Now

Re: Interface/Security Zone mapping and NAT question

Re: Cisco ISR & ASR 1k Routers: IOS-XE/Firmware Upgrade (Install M

Re: How to work with ’Variable Sets’ and why are they so important to

Re: Cisco ISR & ASR 1k Routers: IOS-XE/Firmware Upgrade (Install M