Hello everyone, I have the following issue:The customer would like to disable FMC packet fragmentation globally. According to the Cisco documentation it is quite straightforward.Source chapter: Fragment SettingsCisco Secure Firewall Management Center...
I have just synchronized both Active Directory and Cisco ISE, ISE is using my server (AD) as an NTP server, everything is fine, but now I'm facing an issue "Status Summary: The operation took longer than expected. This may be caused by slow network c...
Hello, I am using Cisco Anyconnect to connect to VPN. The system is using Duo Desktop for device health. It is already installed, running and all the checks are ok. However, I am getting this error message and not able to proceed: Install Duo Desktop...
Hi, I am currently encountering issue on route-based ipsec vpn. I cannot ping my remote IP also the remote tunnel. I have verified that there is no decap showing on packets. I already configured static route between each site and still unsucessful of...
Hi All. I would like to get your thoughts on the following issue i have been facing since implementing Dual ISP and failover for site-to-site vpn tunnels.Hub Site:ASA5515 using 9.6(4)42Spoke sites:Cisco ISRs using 15.1(4)M8, using voip services over ...
Following upgrading to upgrading to 5.1.2.42 to fix the vulnerability CVE-2024-20337Within Microsoft Defender this is still flagged as vulnerability for the CVEIt appears to refer to a component of the install:C:\Program Files (x86)\Cisco\Cisco Secur...
I'm speaking of Essentials/Advantage/Premier. We use on-prem SSM.is there way to know how many licenses Cisco ISE gets from the binding to a virtual account on Cisco SSM?The only piece of information is the consumed ones, like knowing how many you ar...
Hello. I'm trying to renew the ISE's certificate, but I'm using both admin and eap authentication, portal, and radius DTLS. In this case, I would like to know if renewing this certificate will reboot the ISE or if it will cause downtime. The certific...
Hi,Please I need an advise to determine the right NGFW based on the below requirements:- Each NGFW physical appliance should provide minimum of 240 Gbps Firewall throughput.- Each NGFW physical appliance must support minimum of 850,000 new TCP connec...
Please see the attached file. When a Windows client connects to the network and its supplicant is configured to send the computer certificate, what exactly is the PSN doing with this certificate? In the attached i have a use of Lab_dot1x_Certs (See...
Hi, I have one issue with IPSec tunnel Lan-to-Lan between ASA 5525x (v9.8) and ASA FPR 2110 (v9.16). My Tunnel is up but ping between each client was not successful. Both peer status sh cry isakmp sa in "MM_ACTIVE".I ran packet-tracer icmp between pe...
Hello everybody,our customer has a FMCv running sugg. rel. 7.2.5.1 and has a high CPU load of approx. 97%.(see attached screen dump).The VM has 4 CPUs, 32GB RAM and 250GB HDD.The FMC is managing a HA of two Firepower 1120 running rel. 7.2.5.A FMC reb...
Hi. Our end-users suddenly has issue with DUO offline, it keeps on looping on the offline page. This only occurs on end-users who are on overseas or outside Singapore. Initially, they can log-in to their DUO, however after few days, they're already p...