Hi Community, We have a newly established IKEV 1 tunnel from Cisco ASA to AWS. This tunnel is currently at up state but the traffic is not passing through the tunnel. When we enter the show command "show crypto ipsec sa peer X.X.X.X" output have enca...
Hi,I wonder if there is a way to send every incoming and outgoing message both to the original destination and to another destination for analyses. Preferably before any scanning or policies interfere.I've tried google, but have not come up with anyt...
I have created an external admin group in ISE, which is pointing to an AD group. There are several users in this AD group.Will all the users in this AD group gets ISE admin access or can it be restricted to few users.
Hi Community,I'm have an issue getting external authentication working on my FMC managed FTDs(firepower 2100s). I have configured the remote authentication server under in the FMC settings and then navigated over to platform settings to enable it on ...
Hello. Is it possible to use Duo MFA as main authentication method ? Where the user does not need to type logon password, only use the Duo mobile app. Thanks All
Hello everyone, how are you? I'm looking to implement Dot1x on my wired network using ISE as the authenticator and utilizing certificates via TLS. I'd like to know if there's a way to generate the certificate directly on ISE and install it on the ma...
Hi team, just want to ask question, what causing the S2S VPN (HO-ASA, Branch-MX Meraki) can only one way (for some subnet/ip segment)) From Client MX-Branch (10.8.14.x /24) : able to reach/ping to HO-ASA client 10.0.210.x/24 & 192.168.27.x /24 ==>...
Is it possible to transfer an FMC 6.6.7 license to Secure Firewall Management Center 7.3? They are both virtual versions.I'm guessing not, but thought I'd ask.
Has anyone tried to setup the Azure monitoring agent to on-premises Cisco devices so that they can be monitored on Azure? Please kindly let me know the procedure/necessary configuration if anyone has done this successfully.
I'm work on 3900 router and ES3 etherswitch service module. I mistakenly load wrong ios on switch and deleted old ios. Because I didn't have ios on I was trying upload right on using xmodem. I saw in a blog that I should set baud rate to 57600. A...
Hello friends! We are excited to share that Duo Level Up is now generally available to all Duo customers! Our release is a huge milestone that would have not been possible without your support. We sincerely thank you for taking the time to test-drive...
I have two Firepowers in two remote offices and i have two ISPs in each office, i had configured vti ipsec vpn between two offices but they are working with static routes, can i configure dynamic routing protocols for failover vpn? I tried to configu...
Hello all,When looking at show auth sessions int gx/x detail , I see a field called acct update timeout , and ours is set to 300 seconds with a countdown timer.My questions are:What does this field mean?What resets the countdown timer?How can you cha...
Hello. I install ASA 5506-X with firepower.But When i install ASDM launcher 1.9, I can't connect ASA firepower in ASDM.I delete ASDM launcher 1.9 and install ASDM launcher 1.8, I can connect ASA firepower in ASDM well.Certificate warning occurs when ...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: