I was very excited when FirePOWER 6.0 came out with support for Adaptive Security Device Manager (ASDM). ASDM complements CLI greatly on ASA from the configuration, management, and troubleshooting perspective so I was expecting the same for FirePOWER. Components: Cisco FirePOWER: 6.0 Take note of the following requirements and limitations: …
Blog Posts
In Part 2 “Envelope Sender” field was used to match trusted 3rd party domains, but what if that field was also spoofed or did not have sender domain information needed to allow these messages. Below we see an email that came in from the domain “rrd.com” with spoofed “from” and …
As you start blocking spoofed emails based on configuration from the previous post you may need to make a few adjustments to your Incoming Content Filter. One of the them is to change final action for spoofed email from Drop and Discard to Quarantine. This may be needed to store …
Recently there’s been an increase in e-mail scams in which the attacker spoofs a message from the C-Level executive and tricks someone at the organization into wiring funds to the schemers. FBI alert and this article go in a lot of details about this attack. My post will be about …
Cisco ASA was failing SHA2 identity certificate import with the following error: Import PKCS12 operation failed. Components: Cisco ASA: 8.3(2) The issue turned out to be related to an older version of the code. After upgrade to 8.4(7)-30 certificate import was successful. Update: 9.8(4)43 – ASA reboot fixed this issue. …