Hello Experts,I have cisco 1941 on site A and Cisco asa 5500 on the Site B. I have created IPSec tunnel within. I want to Allow few host & ports from Site A to SIte B and vice versa. On Site A we have 5 IPs :-1. 10.10.10.12.10.10.10.23.10.10.10.1694...
Forum Posts
Hello While researching and developing automation around the firepower REST API there seem to be a problem creating Access Policies that inherits another policy. When creating a policy (POST to https://{fmc_IP_or_name}:{https_port}/api/fmc_config...
Hi Folks, I am focusing on the accuracy of firepower applying appropriate IPS signatures based on Host definition. I've raised a couple of posts already online. However I'm still finding out from the server team what is definitely installed on the se...
Hi, I plan to upgrade sensor as below ( no downtime as current only monitor mode ) not comfortable to reimage. Current version FMC - 5.4.1.6sensor fw01 - 5.4.1 sensor fw02 - 5.4.1.5 phase 1 FMC : 5.4.1.6 > 5.4.1.10 Sensor: 5.4.1.0 > 5.4.1.5 > ...
I need to know what commands to use that will send any typed command to my SIEM. I am running the archive command on my switches successfully, but can't find a similar command for either my routers or firewalls. I am running current current IOS c...
Dear All Iam tried to access the FMC through web interface with the ip address of 192.168.45.5, we got the login page but we got the error (unauthorise to access) but through SSH i can able to login with default password. after we did restart the...
Hello, I was wondering, if it is possible to upgrade an existing FireSIGHT/POWER platform running on ASA 5545x to FirePOWER Threat Defense (FTD). Current software version of FireSIGHT and FirePOWER module are 6.2.0.5. Please advise. Thank you. ...
Hi Guys, I just initially configured my FTD in my remote-site and I put my management's gateway as the data interface as there is an option in FDM for it. Now, I can reach the management ip using icmp whenever I am coming from outside however, I cann...
I'll start from the top: I have setup an ASA site to site dynamic config with named tunnel groups which all works fine. My question is, just for testing purposes after setting up the site to site VPN, i then went to ping the outside interfac...
Hello expert,Our FTD is running route mode with IPS rule for inline drop. Can we setup an additional interface to connect switch on SPAN port?One word, Can Single FTD to be both IPS and IDS? If YES, the new interface should be passive mode with passi...
Exciting news! Cisco.com is now personalized just for you – with guides, demo videos, and training resources to help you along every step of the way. So now when you log in and go to your NGFW product page, you'll see a personalized content experienc...
Older 8.2 ASA will not let us get HTTPS out to an Intranet server. Sends other traffic just fine to Private RFC1918 space just won't do it to a Public IP that happens to be on the inside. I've checked everything and tried everything I'm getting hit...
Resolved! Cisco IPS Sensor Software End-of-Support
Hello , we have a cisco asa 5585-SSP20 with ips module , we found on the site cisco that the Cisco IPS Sensor Software 7.3 is End-of-Support 26-APR-2018 , we need to know if the signature updates will not be available after this date? if yes, ...
Hi all, i have a VM FMC deploy in a esxi server environment, when im trying to access the FMC via https through web browser, i came across this message "system proccess are starting, please wait. i can ping the ip address and ssh into the console. my...
Hello, we have set up a custom clientless SSL VPN portal that redirects to a page on our sharepoint 2013 intranet. On this intranet page, we have several https links that redirect to different internal web applications. This works well for applicat...
