I cant figure out the issue
Forum Posts
Resolved! Problems pulishing webserver from FCM
I am traying to reach a website that is on an inside webserver, but I am failing to configure the NAT properly to allow the traffic. In the original source I have the private IP of the server, in the translated source I have the Public IP address whi...
Hi all! We are trying to migrate an from FMC 2500 deployment to SFMC 2700. Our scenario in our 2500 FMC is the following: - Version 7.0.5- devices managed by this FMC:· FTD v7.0.6.2· SFR ASA5516-X v7.0.6· SFR ASA5500-X v6.6.7.1 Reading the officia...
I am seeing quite a large amount of connectivity events in the FMC with blank/empty fields for action and reason. What does this mean? TIA,
Resolved! FMC IP SLA Alert
FMC and FTD 7.4.1I've setup an IP SLA to track some static routes and I'm struggling trying to figure out how to alert on if the SLA gets triggered. Is this possible? I want to setup an email alert anytime the SLA goes down and up.Thanks,
Good day,I have seen the other post on this but none fixed my problem, maybe I am missing some thing but long story short I have a pair of 5520 running in HA Active/Standby Mode. The Standby ASA is in fail mode and I see that the outside interface i...
Hi Cisco CommunityIs there a way to get a more broken down view to see what is actually consuming the most memory in the "Policy Configuration Memory"I am getting some warnings about it using too much memory so we tried to delete some ACLs that were ...
Hi Experts,I am configuring an ISA 3000 in transparent mode using subinterfaces.I created a BVI1 and assign the bridge-group 1 into the subinterfaces using separated vlans.But I am not able to send traffic into the same BVI, firewall shows the follow...
Hello! I need an help! I'm having an issue on the user identify on a FMC. I am using the new Passive Identity Agent. I already opened a Cisco TAC, but they just says me that this is an AD issue and on the FMC and Agent the configuration is good. ...
Due to the Semiannual Security Advisory released yesterday we are testing upgrading to 7.4.2.1 from 7.4.2. We've run into a problem that the upgrade is throwing errors that expired certificates "exist" The DefaultWebserverCertificate was replaced by...
Resolved! Firewall blocking JW Player - Why?
Our organization's Cisco FTD is blocking JW Player, saying it's categorized as "very high risk". I can find nothing on the Internet about JW Player being considered high risk. I don't want to unblock it if the FTD is blocking it for good reason, but ...
Greetings, Kindly advise if FDM is enough for IPS configuration for FTD3110-HA-Bundle as DMZ firewall.
We need unique identifier as part of our rule naming convention. as you know the fmc uses "New-Rule-#5-ALLOW" if it is an allow rule.my suggestion was to use thezone/interface as part of the name, followed by a number, permit/deny, then descriptionin...
Hello,I want to migrate from physical FTD to a FTD virtual, i have just found out that the virtual FTD has some limitation regarding the number of sub-interfaces and interfaces that can be created. But on a test environment i was able to create more...
We are designing a network for a public healthcare customer that needs to support about 3,000+ users. It's a big building with 13 floors.To keep it simple we proposed C9500 on the distro/core (collapsed core) and C9400 on the access layer. Keeping al...
