Marvin Rhoads

Member Since: Jun 28, 2001

English
Marvin Rhoads commented on ASA zero downtime upgrade в Security Management 2 часа назад

Correct - both the active and standby units are tftp clients only. The tftp server is off on an...

Marvin Rhoads commented on ASA zero downtime upgrade в Security Management 2 часа назад

No. I don't believe that's a supported operation. 

Marvin Rhoads commented on ISE Upgrade fro 1.2 to 2.0 в AAA, Identity and NAC 1 день назад

If you have the old SNS-3315 hardware you cannot upgrade all of the way. If you have VM-based ISE...

Marvin Rhoads commented on Cisco ASA 5505 Ping outside and Internet access в Firewalling 1 день назад

You cannot ping the uplink interface from any other interface or host connected via any other...

Marvin Rhoads commented on ASA5506 unable to receive data to inside connections в Firewalling 1 день назад

Does your service policy include 'inspect icmp'?

Marvin Rhoads commented on Use Firepower to block http traffic that is running over tcp port 443? в FireSIGHT System / 3D System 1 день назад

Yes. There is an optional setting in the preprocessor to "Detect Anomalous HTTP Servers". Details...

Marvin Rhoads commented on Firepower/ Firesight Licensing в FireSIGHT System / 3D System 2 дня назад

Your existing Classic licenses can continue to be managed by your FirePOWER Management Center while...

Marvin Rhoads commented on SSL VPN cannot use fqdn cisco asa 5505 в VPN 2 дня назад

Does your DNS server have an entry for the FQDN of vsb.cz? We would normally expect a format like...

Marvin Rhoads commented on CISCO ASA 5500 SERIES в Intrusion Prevention Systems/IDS 2 дня назад

It's 5515-X and 5516-X. The 5515-X is a slightly earlier model and generally the 5516-X is about 50...

Marvin Rhoads commented on Certificate for Firepower в Intrusion Prevention Systems/IDS 2 дня назад

@keithcclark71  , If you're a Cisco partner you should consult the Cisco Network Security Ordering...

Marvin Rhoads commented on How to find FireSight patch version в FireSIGHT System / 3D System 2 дня назад

@Claudiu Cismaru  , Ha ha - perhaps. But it is embedded among the various commands the system runs...

Marvin Rhoads commented on How to find FireSight patch version в FireSIGHT System / 3D System 2 дня назад

Diego, I agree it's an oversight in the GUI. The best you can do there is to search for the...

Marvin Rhoads commented on How to access a URL over site to site VPN в VPN 2 дня назад

I agree with Philip. You said in your original post that you want to access it over the VPN. You...

Marvin Rhoads commented on ASA zero downtime upgrade в Security Management 2 дня назад

John, I tried to copy a file to a switch from an ASA using tftp. I picked a small file I knew to be...

Marvin Rhoads commented on ASA zero downtime upgrade в Security Management 2 дня назад

John, I prefer to copy the image from an external repository like my laptop. I've never tried tftp...

Marvin Rhoads commented on ASA zero downtime upgrade в Security Management 2 дня назад

You can do the upgrade directly from 8.4(3) to 9.1(1). Yes the release notes recommend going via 8....

Marvin Rhoads commented on FirePOWER modules update в Advanced Malware Protection (AMP) 3 дня назад

You are required to have a Smartnet contract in order to be entitled to download and use updated...

Marvin Rhoads commented on Need PDF & configuration pDF & link в Network Management 3 дня назад

Installing the license is quite simple. Please see this link: http://www.cisco.com/c/en/us/td/docs/...

Marvin Rhoads commented on ASA-5515x: multiple context mode vs single context mode в Firewalling 3 дня назад

99.9% of ASA 5515-X installations will be single context. To confirm, simply use the command "show...

Marvin Rhoads commented on ASA 5580 ssh problem suddenly в Firewalling 3 дня назад

Understood. Perhaps the TAC would be able to advise further. Are you able to open a TAC case?

Marvin Rhoads commented on ASA 5580 ssh problem suddenly в Firewalling 3 дня назад

There was a bug in ASA 8.3(2.8) where there were orphaned ssh sessions. But that shouldn't affect...

Marvin Rhoads commented on Unable to disable MOP service in cisco 3850 switches в Security Management 3 дня назад

I don't believe the MOP service is supported on the IOS-XE versions that those switches run. It's...

Marvin Rhoads commented on Prime 3.1.5 - Goes mad and keeps notifying about past events and becomes slow в Network Management 4 дня назад

I've heard nothing but bad things about the 3.1.5 update. I'm advising my customers to stay with 3....

Marvin Rhoads commented on Certificate for Firepower в Intrusion Prevention Systems/IDS 4 дня назад

What is your learning goal? The best method depends on that and the knowledge you have already. If...

Marvin Rhoads commented on ASA 5580 ssh problem suddenly в Firewalling 4 дня назад

Do you have multiple contexts? Which ASA software version is running on the 5580?

Marvin Rhoads commented on Cisco 4110 FTD AND ASA setup в Firewalling 4 дня назад

You install one or the other but not both images on a 4110.  The ASA image will have 100% support...

Marvin Rhoads commented on ASA 5580 ssh problem suddenly в Firewalling 4 дня назад

There's a nice article at tunnelsup.com that explains checking the resources, viewing the sessions...

Marvin Rhoads commented on ISE VM and ISE physical appliance in distributed deployment в AAA, Identity and NAC 5 дней назад

As Rahul said, it works fine and is fully supported by Cisco.  Just make sure that the CPU, memory...

Marvin Rhoads commented on ASA 5580 ssh problem suddenly в Firewalling 5 дней назад

It's possible some automated system has exhausted the vty lines. You'd have to check that via a...

Marvin Rhoads commented on Firepower clustering в FireSIGHT System / 3D System 6 дней назад

I've not seen any plans for active/active HA on any of the FTD platforms. Multiple context support...

Marvin Rhoads commented on Logging through the Management Interface в Network Management 6 дней назад

I believe you need to specify the vrf when trying to log from an interface that is not assigned to...

Marvin Rhoads commented on VPN on FTD 6.2 from FDM в Firewalling 6 дней назад

I don't think they added the monitoring into FDM yet. You can see the status from the cli with the...

Marvin Rhoads commented on Rent ESXi for VIRL в Other Network Infrastructure Subjects 6 дней назад

Cisco partners with packet.net to allow customers to use a cloud-hosted VIRL.  http://virl.cisco....

Marvin Rhoads commented on ASA and FTP в Network Management 6 дней назад

I'm not sure packet-tracer can be used to simulate traffic from the ASA.  I'd first make sure...

Marvin Rhoads commented on Cisco ASA with FirePower , "show route" в Security Management 6 дней назад

Ah ok. You are correct - "show route" should not require root access.  I don't have a 6.2 sensor to...

Marvin Rhoads commented on ASDM View after OS upgrade в Firewalling 6 дней назад

No confirmation of the bugid - just three of us reporting the exact same thing. I'll open a case...

Marvin Rhoads commented on how to reload switches using cisco prime infrastructure в Network Management 6 дней назад

Ah yes. Thanks for pointing that out. Since 'reload' requires the operator to confirm we need to do...

Marvin Rhoads commented on how to reload switches using cisco prime infrastructure в Network Management 6 дней назад

Can you share the error log?

Marvin Rhoads commented on firesight Issue в FireSIGHT System / 3D System 6 дней назад

You can purge the discovered hosts as described here: http://www.cisco.com/c/en/us/td/docs/security...

Marvin Rhoads commented on Cisco ASA with FirePower , "show route" в Security Management 6 дней назад

Switch to 'expert' mode first. Then you can execute commands requiring superuser privilege level. 

Marvin Rhoads commented on ASDM View after OS upgrade в Firewalling 6 дней назад

I had the same experience. I believe it's a bug in ASDM 7.7(1). 

Marvin Rhoads commented on asdm ASA 5505 в Firewalling 6 дней назад

http <nameif of the ASA address> 0.0.0.0 0.0.0.0 ...will allow any hosts to use ADSM via that...

Marvin Rhoads commented on how to reload switches using cisco prime infrastructure в Network Management 6 дней назад

Make a cli template and deploy it to the target devices. A cli template will always be in...

Marvin Rhoads commented on Firewall with bandwidth management and load balance feature в Firewalling 1 неделя назад

The Meraki MX series would probably be a good choice for that requirement set. https://meraki.cisco...

Marvin Rhoads commented on Why does the FirePOWER Management Center not recognize Windows 10 and Server 2012 devices в Intrusion Prevention Systems/IDS 1 неделя назад

Thanks for the update. Unfortuantely even FMC 6.2 with the latest VDB 279 still doesn't update the...

Marvin Rhoads commented on FireSight - Custom - Dashboard в FireSIGHT System / 3D System 1 неделя назад

deleted - duplicate

Marvin Rhoads commented on FireSight - Custom - Dashboard в FireSIGHT System / 3D System 1 неделя назад

deleted - duplicate

Marvin Rhoads commented on FireSight - Custom - Dashboard в FireSIGHT System / 3D System 1 неделя назад

deleted - duplicate

Marvin Rhoads commented on FireSight - Custom - Dashboard в FireSIGHT System / 3D System 1 неделя назад

I'm not positive about doing it with a dashboard - a custom analysis widget doesn't give you that...

Marvin Rhoads commented on ASA5525 with firepower в Firewalling 1 неделя назад

The SSD is internal and always included with 5506/08/16. Also all of those models only come with...

Био

Sr. Network Engineer, CCNP Security, Fire Jumper








  • Cisco Designated VIP

    2017 Firewalling, Network Management, VPN





  • Cisco Designated VIP

    2016 Firewalling, Network Management, VPN





  • Cisco Designated VIP

    2015 Security





  • Cisco Designated VIP

    2014 Security, Network Management





  • Cisco Designated VIP

    2013 Security, Network Management









Marvin Rhoads's Stats

Баллы17086
Обсуждение началось 77
Ответ тпомечен как правильный 2019
одобрил 52
Содержимое оценки 386