Hi, I have one issue with IPSec tunnel Lan-to-Lan between ASA 5525x (v9.8) and ASA FPR 2110 (v9.16). My Tunnel is up but ping between each client was not successful. Both peer status sh cry isakmp sa in "MM_ACTIVE".I ran packet-tracer icmp between pe...
Hi,FTD was added and to FMC and while configuring HA in FMC, deleted FTD from FMC.While trying to add again to same FMC, both primary and secondary FTD not getting registered in FMC.Could you please help on getting the FTD registered with FMC.
Hellocould you please share the solution for showing dropped packet from internet to inside lan ? i have FTD 4100 series managed by fmc I want to see output from cli or fmc related to nat transactions packet(dropped and passed) both.
I'm in the process of updating all our FTD's from Snort2 to Snort3 & almost everything appears to work, except SMTP/S email.Under Snort2 it shows in event logs as SMTP/S Client traffic type correctly, but when Snort3 is enabled, it does not recognise...
Hi Guys,We're having some issues since deploying the AnyConnect VPN with users reporting poor call quality and packet loss on Microsoft Teams and over Skype both audio and video calls?Is there anything we can try or tweak on our ASA and AnyConnect se...
We have clients receiving a "PKCS12 (PFX) without a supplied password" error while connecting to RAVPN using Cisco Secure Client (5.1.2.42). The headend device is FTD 3130.The full error is "There was an erro during initialization: PKCS12 (PFX) witho...
Anyconnect has been uninstalled on my Mac. I have been having issues with network connections so I ran "systemextensionsctl list" in Terminal. When uninstalling anyconnect it looks like the "com.cisco.anyconnect.macos.acsockext" Socket Filter Extensi...
I plan to migrate a FMC running in vsphere to AWS. Initially I plan to: 1. Build the FMC in AWS as brand new; 2. Backup the existing FMC (running v7 already) and then restore the backup in AWS FMC; 3. Login to AWS FMC serial console to change the MGM...
Hello,When configuring SSL VPN, the default encryption type is "ssl server-version tlsv1.2 dtlsv1.2", which only shows up with a "show run all". In that output, I can also see that "ssl cipher tlsv1.2 medium" and "ssl cipher dtlsv1.2 medium" are disp...
Hello, any help appreciated.I am having issues when trying to assign a different group policy to a user where the group policy contains a different client profile (XML) to the one used to connect in the first instance. This is what I am trying to do....
I have created an external admin group in ISE, which is pointing to an AD group. There are several users in this AD group.Will all the users in this AD group gets ISE admin access or can it be restricted to few users.
We are moving from Zscaler to Umbrella and use Canon Uniflow for the printers.The printers worked fine before Umbrella but can not print anymore since moving to Umbrella.There is only default policy enabled for the tunnels from sdwan routers to Umbre...
When a client connect to the HQ via AnyConnect vpn, they can access the HQ local subnet, but can´t access the subnet at the remote office, that has an site-to-site connection to the HQ.Can this be configuret via the Cisco Firepower gui?Cisco Firepowe...
Cisco WLC 9800 is configured to broadcast a SSID alias as "Original_SSID", the WLC is configured with a ISE controller IP, but in the client computer we see the available SSID alias as "Other_SSID".We do not access to the ISE configuration, can the I...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: