Security

Explore the security forums and share your expertise about firewalls, email and web security, Identity Service Engine, VPN, AnyConnect, Duo, Secure Access and more.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

Browse the Community

Network Access Control

Cisco Access Control Server (ACS), Identity Services Engine (ISE), Zero Trust Workplace

32502 Posts

Network Security

Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.

71224 Posts

Duo Security

Get started with or get better at administering and using Duo by interacting with peers and experts!

3339 Posts

OpenDNS

Ask questions not covered by support articles and documentation.

3452 Posts

Activity in Security

Firepower - BVI with port channel sub interface

Hi community, we want to deploy firepower 3105 - version 7.3.1 to bridge two VLAN(119 & 191) on distribution switch and allow two network to communicate with the same subnet as following we have run the following test with 10.127.190.11 and 10.127.1...

andytffung_1-1731194190691.png andytffung_0-1731197076843.png andytffung_1-1731197109986.png andytffung_2-1731197144088.png

Resolved! implementing private VLANs on Firepower

My department is looking for implementing private VLANs on Firepower 2000 and 4000 series. Is this feature available or supported on FTD/FMC? Thanks in advance for the reply.

PiotrB by Level 1
  • 915 Views
  • 3 replies
  • 0 Helpful votes

Policy Based Routing Not routing out configured egress interface FTD

I have setup a Route Based Site-Site Tunnel with Cisco Umbrella. Tunnel comes up fine. My issue is I'm using Policy Based Routing because I only want 80/443 traffic to go over the tunnel. Packet tracer shows that PBR-Lookup matches the ACL and identi...

DannyDulin_2-1731098130405.png DannyDulin_1-1731096894864.png

Esa showing down in Delivery status

Hello All, We have 8 Esa cluster and all of them showing online when i check Connection status in Sma. However in delivery status page its showing down. Can anyone knows what could be the issue. PFB relevant snaps. Connection status in Sma Delivery ...

Vishal6_2-1731063296838.png Vishal6_1-1731063110190.png
Vishal6 by Level 1
  • 93 Views
  • 1 replies
  • 0 Helpful votes

IKVE2 IPSEC not comes up

Between the ISR Router ISR4331, I have configured IKEv2, but the tunnel comes up.Setup like HUb and spokein the HUb router more than 35 tunnels are there, am facing issue with only one site. Logs collected from spoke router :Apr 15 12:32:03.188: IKEv...

'crypto keyring' limit for VRF on IOS router

hi,i got a 2911 router which currently has a site-to-site VPN working using the 'crypto keyring vrf' (for VRF aware IPSEC).i need to add another site (CUST-2) using the same command but different VRF (CUST-2) but getting the log and deug below. i alr...

Resolved! Changing Anyconnect MTU on ASA or client

I am trying to fix the MTU bug on the Anyconnect client. I currently have clients connecting to a ASA5545X that is running version 9.0(4) code. I don't see anywhere to specify svc mtu 1200 in webvpn or group policy on this code release. Does anyo...

Cisco AnyConnect VPN - mus.cisco.com Traffic

We are currently using Cisco AnyConnect VPN client on Win10 machines for remote access and Cisco ISE providing 802.1x services on the LAN. The problem we are seeing is the Win10 Cisco AnyConnect clients are creating lots of connections to mus.cisco.c...

jimbo_01 by Level 1
  • 1420 Views
  • 1 replies
  • 0 Helpful votes

Can't access tickets

I created a ticket and received a notification that it was resolved. However, when I go to https://talosintelligence.com/tickets/559233, it redirects me to https://talosintelligence.com/. If I try to just go to https://talosintelligence.com/tickets/,...

Cisco FDM High availability

Hello everyone. Has anyone had this problem before? my secondary device is keeps failing And it's keep telling me (Event description: Interface check This host:1 single_vf: diagnostic Other host:0 ) That I looked at the management interface I ever se...

ahmadjarraho_0-1731063598125.png

ASA version 9.20.3.4 and Net iD Client

Hi, I have recently upgraded my ASA to version 9.20.3.4We use certificates to authenticate clients, and on client computers, we use an application called "Net iD Client."Users with an older version of "Net iD Client" kept getting a "certificate valid...

Ab26 by Level 1
  • 144 Views
  • 1 replies
  • 0 Helpful votes
Top Experts - Last 30 Days