Cisco Add FirePOWER Module to FirePOWER Management Center
KB ID 0001178 Problem If you only have one FirePOWER service module you can now manage it from the ASDM; ASA 5505-X / 5508-X Setup FirePOWER Services (for ASDM) But if you have got more than one, and you can manage them centrally with the FirePOWER Management Center, (formally SourceFIRE Defence Center). WARNING: If you are going to use FMC DON’T register your licences in the ASDM, they all need to be registered in the FMC. ...
Cisco – Testing AAA Authentication (Cisco ASA and IOS)
KB ID 0001175 Problem I always forget the syntax for this, and I’ve been meaning to publish this for a while so here you go. If you have AAA setup and people can’t log in, then the ability to test authentication against a user’s username and password is a good troubleshooting step! Usually I’m on a Cisco ASA but I’ll tag on the syntax for IOS as well. Solution Cisco ASA Test AAA Authentication From...
Windows Server – Change a DHCP Scopes Subnet Mask
KB ID 0001177 Problem You have probably tried to do this and found he option ‘greyed out’ because in the DHCP management console you can’t change the subnet mask of a scope. I needed to change a clients DHCP scope because I was changing their subnet from /24 to /16. I could have simply deleted and recreated the scope, but they has a lot of custom settings for their phone system, and hundreds of reservations (which...
HP – Switches The IP (or subnet) Already Exists
KB ID 0001176 Problem I was changing a clients LAN subnet this week, (dropping the mask from /24 to /16). When I attempted to change the management IP on the clients HP switches this happened; HP2510-24G(config)# vlan 1 HP2510-24G(vlan-1)# ip address 10.0.0.250 255.255.0.0 The IP address (or subnet) 10.0.0.250/16 already exists. HP2510-24G(vlan-1)# At first I though the switch was complaining because the IP was remaining the same, I...
Cisco FirePOWER SFR Module Cannot Ping
KB ID 0001174 Problem On a newly deployed FirePOWER service module I wanted to test connectivity and attempted to ping a public IP address. This is what happened; > expert admin@Petes-SFR:~$ ping 8.8.8.8 ping: icmp open socket: Operation not permitted My first though was, “Well you have to set a default gateway on the SFR when you set it up, so the firewall is probably blocking ICMP”. So I checked the default policy...