Activity in Security
query on ASDM access
We have FTD devices with ASA image in production which managed by FMC and Also we are managing firewall through ASDM. so now we are removing the FMC from production and want to manage the FTD devices locally. so is there any impact if the firewall is...
Trouble with ASAv anyconnect radius login
Hi EveryoneI'm using a trial version of ASAv and i believe it has full functionality but is limited in 100kbps. I'm trying to set up remote access anyconnect vpn which authenticates to our NPS radius server. As you can see in the radius debug, it see...
Cisco VPN Client cuase windows crashes
Hi,I have a newly reinstalled OS Windows 11 PC. There is Cisco AnyConnect Secure Mobility Client on my PC to connect to my work access. Randomly my pc crashes, basically freezes. After manually power off and power on When I check event viewer the las...
"Change Password" functionality
Hi all;I have several questions regarding the 'Change Password' functionality in various areas of ISE because there is little or no useful guidance on this topic from Cisco...As far as I know, there are two places in ISE where you we can manage the "...
Firepower correlation and remediation
With the massive number of attacks on AnyConnect and other VPN's, I've begun looking into how to further remediate these login attempts. We have MFA in place.I'm having trouble understanding how to associate a remediation with a correlation policy.Ou...
Weak SSL/TLS Key Exchange
Hi I hope your doing well in our network infrastructure where we have Qualys to scan for vulnerabilities i can't find a solution for this certain vulnerability here are the details :Weak SSL/TLS Key Exchange impact an attacker with access to suffici...
How to capture dropped packet in ftd firewalll
Hellocould you please share the solution for showing dropped packet from internet to inside lan ? i have FTD 4100 series managed by fmc I want to see output from cli or fmc related to nat transactions packet(dropped and passed) both.
Snort3 not recognising SMTP/S but Snort2 did/does !?
I'm in the process of updating all our FTD's from Snort2 to Snort3 & almost everything appears to work, except SMTP/S email.Under Snort2 it shows in event logs as SMTP/S Client traffic type correctly, but when Snort3 is enabled, it does not recognise...
ISE DNS health check showing warning
Hi all,I have a four new standalone nodes which will be going into a cluster, I am seeing two nodes have a DNS warning. All nodes are located in the same caI can ping both DNS servers .21 and .22 and nslookup up works to resolve its own IPWhy are two...
Cisco ASA Anyconnect VPN Clients local IPv6 causes DNS issues
Hi All,We are experiencing some issues with different users, hope someone here can help solve it.First our setup, we have clients connecting with Client VPN using Cisco AnyConnect version 4.9.06037 and connecting to a Cisco ASA5585-SSP-20 running So...
Cisco FPR version 7.2.5 is possible make group lock for local user
Hello , Cisco FPR version 7.2.5 is possible make group lock for local user that connect to local network over AnyConnect. I want to make Anyconnect access in our network where we have more group policy, we can not find that we can lock local user fo...
Query regarding BGP convergence on FTD HA pair
Hi, I'm looking at deploying BGP on an FTD Active/Standby HA pair (FTDs are 4215 hardware running 7.2) to enable routes to be controlled by neighbouring routers rather than relying on 100s of static routes on the FTDs. I was wondering if anyone could...
Created a Route Based IPSEC Tunnel on Cisco FTD 2140
I have a Cisco FTD 2140 Secure Firewall that I am trying to build a route based IPSEC tunnel using VTI's. The vendor needs my proxy ID or encryption domain to be presented as a public IP address. So my WAN IP is obviously public but my internal netwo...
FMC cert expiration notification and catalyst jobs stuck "in progress"
Hello, we recently had our cert for our VPN expire without notification via alert message. I've done some research in the FMC but can't find anything that monitors certificate expiration dates. A google search points toward REST API's of course but t...
Possible? ASA 9.x run AAA with Cert and AAA only on same interface
Is it possible to run Radius with Cert and Radius only on the same interface. I have different profiles for the two. but they share the same tcp port. Need to do a POC, and it would be much easier to have user login with just Radius, not Radius and c...
| User | Helpful Count |
|---|---|
| 45 | |
| 42 | |
| 35 | |
| 21 | |
| 19 |
