FTD Dynamic Objects

• Post author:Admin
• Post published:November 11, 2024
• Post category:Cisco/FTD

A new feature in the version 7.0 release of Cisco FMC/FTD (aka Cisco Secure Firewall) is Dynamic Objects. A Dynamic Object is a list of IP addresses/subnets, unlike a regular…

Continue ReadingFTD Dynamic Objects

FTD URL Filtering

• Post author:Admin
• Post published:November 10, 2024
• Post category:Cisco/FTD

With the URL Filtering license, the Cisco Secure Firewall FTD devices can filter based on category and/or reputation of the URL, a URL database is frequently updated from the Cisco…

Continue ReadingFTD URL Filtering

FTD Geolocation

• Post author:Admin
• Post published:November 9, 2024
• Post category:Cisco/FTD

Cisco Firepower Threat Defense (FTD) can filter traffic based on the Geolocation of the source IP address. A Geolocation database (GeoDB) is a database of geographic data (such as country,…

Continue ReadingFTD Geolocation

ASA dual ISP backup VPN

• Post author:Admin
• Post published:September 19, 2024
• Post category:ASA/Cisco/VPN

This post covers the configuration of a policy-based Site-to-Site VPN on a single Cisco ASA Firewall (or HA failover pair) with dual internet connections on the head-end ASA. Topology The…

Continue ReadingASA dual ISP backup VPN

ASA Dynamic VTI

• Post author:Admin
• Post published:September 16, 2024
• Post category:ASA/Cisco/VPN

Cisco Secure Firewall ASA version 9.19 introduces the Dynamic Virtual Tunnel Interfaces (DVTI) route-based VPN, which is an alternative to a policy-based VPN (crypto map). VTI is always up, unlike…

Continue ReadingASA Dynamic VTI

ASA Active/Active

• Post author:Admin
• Post published:September 9, 2024
• Post category:ASA/Cisco

The Cisco ASA supports Active/Active failover mode, which allows both ASAs to pass traffic, allowing load balancing of network traffic. Active/Active Key Points Requires using multiple context mode. Refer to…

Continue ReadingASA Active/Active