Network Security

Migrating from Firepower Module to FTD

Has anyone has any experience migrating from ASA using firepower services to FTD ? I was not able to find if ACP which are used for the Firepower Module can be applied applied to the FTD firewall once the firewall has been upgraded ? We are current...

ASA with Firepower version 5.4 - Upgrade Paths

I installed an ASA 5515x with Firepower services version 5.4 about 2 years ago at a customer location. Also installed is a Firesight Management Center VM version 5.4. I have read the release notes on ugrading the FMC (version 6.2), and it states ...

Does ASA 5516-X have the ability to mark/change DSCP?

Hello Everyone, Does ASA 5516-X or 5525-X have the ability to mark/change DSCP? Reason behind the title of this inquiry is that I'm looking for a sample configuration where we can mark a data traffic(set it to AF31) from an inside Interface whe...

New ISP CONNECTED AND CHECK ONE VLAN NETWORK WHETHER INTERNET IS WORKING

WE CONNECTED NEW ISP INTERFACE TO OUR CISCO ASA.ALREADY WE HAVE 2 ISP IN ASA.WE CONFIGURE THE INTERFACE FOR NEW ISP AND WRITE NEW NAT POLICY FOR ONE VLAN NETWORK TO CHECK WHETHER INTERNET IS WORKING OR NOT,INTERNET IS NOT WORKING. OUR NAT POLICY IS...

Need advice for Cisco devices - Software currency

Hi all, I was involved in software currency and have to make sure all the Cisco devices (Routers/Switches) which are running IOS or IOS-XE software should be upgraded to latest software versions. Is there any way I can verify if a software vers...

how to know original ip requested domain/URL ??

i have infoblox dns and cisco firepower as edge FW but i have issue , when i see intrusion event in cisco firepower i found that the IP of infoblox dns is the top ip in event , i want to view the original Client IP before it goes to infoblox dns serv...

FP2110

I need to know if i have FP2110 with IPS license and i need to make HA between them do i need extra license to do HA or not ?

Query regarding ability to restricy SSH to version 2 through an ASA

Would anyone be able to advise on how to enforce SSH v2 for connections passing through an ASA firewall? I'm aware of the 'ssh version 2' command, however my understanding is that this relates only to SSH connections to the ASA for management. I've ...

Resolved! ASA 5506-X with FirePOWER 5.4.1 will not update

Product Updates, Rule Updates and Geolocation Updates do not work on ASA 5506-X with FirePOWER services 5.4.1 Whenever I update the FirePOWER software and the rules from ASDM (Configuration > ASA FirePOWER Configuration > Updates and when I click “Do...

Resolved! Access control List

Hello I want to create an access control list on a router that does the following: 1) access control list to deny all inbound traffic with network addresses matching internal-registered IP address 2) Deny all ICMP echo request traffic 3) Deny a...

Resolved! Increase Database Limits (Virtual FMC)

I am aware of the 10m cap on Virtual FMC database. I have seen options for external database connections. Am I misunderstanding this or is it possible to create some sort of SQL database on a server and give FMC access to utilize that database thus...

ASA 5506-X unable to use with Wireless Controller and lightweight access points - UDP 67 discarded

Hey guys, I recentlly purchased 2 ASA 5506-X to replace Meraki MX50 appliances and I'm running into an issue. Basically UDP traffic including port 67 is being discarded inter VLAN My configuration: ASA-tunk port-SWITCH-trunk port-WLC ...

ASA 5585-X IPS Management 0 & 1 for redundancy

HelloI try to test redundancy management interface of module 1 IPS 8Management 0/1 (core SSP in slot 0)Management 1/1 (add-on module in slot 1)(GigabitEthernet RJ45)9Management 0/0 (SSP in slot 0)Management 1/0 (add-on module in slot 1)(GigabitEther...

Firepower IP addresses

I am trying to figure out the IP addresses required for Firepower 4100 series bundle and FMC mgmt setup. Here is what I have figured out so far: - One IP address for each Firepower chassis (managed through either firepower chassis manager FCM GUI or...

Resolved! ASA 5510 - changing password of admin account

A very simple tasks: How do I change password for the admin user and enable password on Cisco ASA 5510, this shows it should be straightforward by using passwd and enable passwd but it simply does not work. What I do: Login as admin over ssh with old...

Network Security

Forum Posts

Migrating from Firepower Module to FTD

ASA with Firepower version 5.4 - Upgrade Paths

Does ASA 5516-X have the ability to mark/change DSCP?

New ISP CONNECTED AND CHECK ONE VLAN NETWORK WHETHER INTERNET IS WORKING

Need advice for Cisco devices - Software currency

how to know original ip requested domain/URL ??

FP2110

Query regarding ability to restricy SSH to version 2 through an ASA

Resolved! ASA 5506-X with FirePOWER 5.4.1 will not update

Resolved! Access control List

Resolved! Increase Database Limits (Virtual FMC)

ASA 5506-X unable to use with Wireless Controller and lightweight access points - UDP 67 discarded

ASA 5585-X IPS Management 0 & 1 for redundancy

Firepower IP addresses

Resolved! ASA 5510 - changing password of admin account

FMC 7.4.2.1: Missing active sessions in Remote Access VPN dashboard

FTD migration

FTD not recovering RADIUS server down

FMC 7.4.2.1-30 unsets/sets DNS domain-name every day

Cisco FTD SNMP OIDs for Site-to-Site and Remote Access VPN

Firepower 1120 has wrong (falcon demo) license active

L-CSF1230-TMC-3Y 's TOP SKU

FMC error has unknown CPU number

Cisco FirePower

keep security zone on FMC