Resolved! Exploiting DNS
Is there a way to receive an active report when a DNS is being currently exploited within the firepowers? How do I create that report?
Forum Posts
Hello,system is a FPR-1010 with ASA-SW 9.23(1)13.When enrolling LetsEncrypt certificates with ACME I noticed a strange timeout problem.Without "alt-fqdn" entries, everything works fine!crypto ca trustpoint LetsEncrypt_Trustpoint enrollment interface...
I have a requirement to deploy redundant WSA with SMA. Below are the licenses which i have.WEB-SEC-SUB – Cisco Web Security XaaS Subscription – 1WSA-WSP-LIC – Web Advantage SW Bundle (WREP+WUC+AMAL) License – 1000WSA-AMP-LIC – WSA Advanced Malware Pr...
Hello community,recently we are experiencing random blocking of some webs on Cisco WSA with reasonReason: BLOCK-MALWARENotification: MALWARE_SPECIFICWeb is only blocked about 1 of 10 access attempts and after refresh it is loaded correctly.Seems like...
Hi, we recently configured Umbrella for EntraID SSO access. However, we noticed that when creating a new user by sending the access invite, it remains pending. When accepting the email, the user receives an error. Accessing with single sign-on (SSO) ...
Hi allwe are running version 15.2.3-007 and had issues with "https[:]//static.licdn.com/sc/h/aw8kb2iuzc84hkxmjwwi3fqi4".Allowing "deflate" didn't help to allow download of "text/javascript", enabling "br" as well helped finallyIs the function broken ...
Dear Community,I hope you are doing well.I would appreciate your support in resolving the following query:What are the recommended commands for Cisco WSA Proxy related to Integrity Monitoring, and what is the significance or purpose of each command?Y...
Hi Cisco Community, I'm planning to upgrade our **Cisco Web Security Appliance (WSA)** from **AsyncOS 14.5.0-537** to **15.2.3-007**. Should anyone tell me the best practices and what to check before the upgrade? Looking for advice on:1. Any **criti...
Hi All, Facing an error where crowdstrike agent not able to connect to crowdstrike portal due to ssl certificate failed error. I have added the required url in allow list and decryption bypass policy, still the same issue. Pls note: Currently im usin...
Resolved! WSA cannot delete manager (SMA)
HI, How could I please delete the manager (SMA) of my WSA (S195) V11.8.0-414 ? regards,
Hi Everyone, I am performing an offline upgrade for Cisco WSA. I am trying to download firmware package from http://updates.ironport.com/fetch_manifest.html. and the download link is not working. I just wanna check if there's an alternate site to dow...
HelloNew to Umbrella and having trouble allowing desktop app such as WhatsApp and LINEWe have blocked the Social Networking category for all colleagues but I would like to allow access to WhatsApp and LINE. Looking at WhatsApp I've added whatspp.com ...
Hi All,I have .crt file from Godaddy that I need to install on my ASAv10 identity certificates. In ADSM the add button wants a pkcs12 format and Godaddy only provides .crt and pem files. I could really use some advice/guidance. Thanks all!Cisco Adap...
Hi what is the recommended asyncOS for "Secure Web Virtual Appliance S300V" i work with 15.x , and it is OK for me, but i need to know what is the recommended by cisco. yaron
I'm trying to disable SOCKS5 on my APIC due the libcurl heavy buffer overflow vulnerabilitie. I'm not sure if the proxy even exists on the APIC. I only found the http and https. Any ideas?
