After upgrading ASA to version 9.18.4 we are seeing Azure Traffic Manager probes being dropped (or discarded). In the logs we see 'TCP access denied by ACL from <traffic manager IP> to Outside Interface /443' It works fine when reverting back to 9.16...
HelloWe have a lot of clients getting the following error when contacting diffrent sites: ERR_SSL_PROTOCOL_ERROR, we have read that SonicWall and Palo Alto also have these problemes. Solution is to turn off "TLS 1.3 Hybridized Kyber Support" in chro...
I'm hoping I can explain this clearly enough. I have a remote site with a site-to-site tunnel. From the Home Office and the remote site, we are allowing a split tunnel, but we need to tunnel a specific external site via the home office.The IP Scope f...
Hello everybody,our customer has a FMCv running sugg. rel. 7.2.5.1 and has a high CPU load of approx. 97%.(see attached screen dump).The VM has 4 CPUs, 32GB RAM and 250GB HDD.The FMC is managing a HA of two Firepower 1120 running rel. 7.2.5.A FMC reb...
Hi, The File Detection category generates a lot of alerts on browser cache with signatures like these:GT:JS.Hyena.xGT:JS.Injected.xTrojan.Generic.xTrojan.GenericKD.xAuto.x.in02W32.x.in12.TalosMost of the time these files are unique so they won't be o...
I'm speaking of Essentials/Advantage/Premier. We use on-prem SSM.is there way to know how many licenses Cisco ISE gets from the binding to a virtual account on Cisco SSM?The only piece of information is the consumed ones, like knowing how many you ar...
Howdy Cisco Community!Need your help as fairly new trouble shooting site to site VPN connectivity.I am unable to establish VPN connectivity per information below.Site:1crypto ipsec ikev2 ipsec-proposal CSM_IP_1protocol esp encryption aes-256protocol ...
Dear Community,I'm asking for you guidance. I have come across a challenge on Cisco ASA version 9.8. Need to allow a web server to be access outside(Public) from DMZ Zone to Ouside Zone. Per below configuration template. Nat is transilating but acce...
Hope you guys can help. I need to know if Anyconnect 4.10 is compatible with FTD versions 7.3 & 7.4? I am aware Anyconnect is no longer under support (as of 31/03/2024), We're in the process of upgrading our ASAs to FTDs and we need to know if we...
Hello Everyone, I am contacting you all because i don't seem to find the needed information to resolve my issues, even though there are many similar topic as mine with the same error.We have an infrastructure using FTD ASA5506 with switch CISCO WS-C2...
Trying to deploy an Instance via the FMC. Instance gets created okay on the deviceHowever I and am getting the error "This instances is not registered with this management centre".The Instance does not display in the "Devices All" page. But it is on ...
I have just synchronized both Active Directory and Cisco ISE, ISE is using my server (AD) as an NTP server, everything is fine, but now I'm facing an issue "Status Summary: The operation took longer than expected. This may be caused by slow network c...
Hi we have 2 WSA out of which one WSA is showing 503 error for a specific Site. When i tried nslookup in WSA for that site it shows the server returned no data(in both WSA).But the site is working in one WSA but not in the other and after 15 mins the...
Do you have any idea on this?[ldap_server_auto]client=ad_clientikey=nnnnskey=nnnnapi_host=api-nnnn.duosecurity.comfailmode=securefactors=pushexempt_ou_1=Xexempt_primary_bind=falseAfter Enable I checked on port seeing certificate is work now. but I tr...
hello We have a old fire power that I have no idea how to upgrade. The actual device is a Cisco Firepower 2130 Threat Defense (77) Version 7.0.4 . Cisco Adaptive Security Appliance Software Version 9.16(3)18. and we have a FMC that is Cisco Firepower...