Hi everyone I'm having this rare issue in which i have an inbound ACL with a "permit any any" rule at the bottom that is logging its matches so i can declare the application traffic on top of it and delete this unsecure rule . The thing is i have con...
Hi Today i found out that ASA5545 CPU went to 60% and it was all consumed by the DATAPATH-0-2326 process. I could lower it to 30% by removing a capture process that wasnt removed by ASDM after the program close.The average CPU usage three days ago wa...
Hi everyone I'm having an issue when i try to redistribute a static route that is known from a VTI interface to the EIGRP process. The route appears in the table and is working for the devices that have the ASA as gateway but when i add it to the pre...
Hi Mohammed The output of the command is the "permit ip any any" rule:access-list ACL_PROAPP_IN line 99 extended permit ip any any log alerts interval 300 (hitcnt=29908463) 0xd61e0a69 As i wrote in the edit of the post, i think the issue is related t...
Hi Francesco, thanks for your time. No, it's not using the Firepower Feature. This is somehow related to a marketing campaign because this started three days ago. In december we had a more agressive campaign with lots of connections and the CPU usage...
Hi Thanks for your reply. At last, i modified the VPN type to Policy Based and activated RRI acomplishing the route redistribution. This was not the ideal escenario because on the back up site, even if the VPN is down i get the route redistributed, ...
Hi Cisco ASA wont let me configure static route command without a next hop route VPN_VTI 172.23.40.0 255.255.255.0ERROR: % Incomplete command I think maybe the problem is that i dont have all K values on a VTI interface to calculate EIGRP metric, but...
Hello I changed the subnet of the VTI interface but it doesnt seems to make any change, it is still not appearing on eigrp topology table or neighbors routing table sh route 172.23.40.0Routing entry for 172.23.40.0 255.255.255.0Known via "static", di...
