Hi to Everyone!Recently, the company where I work carried out an Ethical Hacking process and one of the vulnerabilities that it showed and that I have not been able to solve, was the enablement of an HTTPOnly attribute which was disabled in our Remot...
Forum Posts
Resolved! FTD NAT
Hi Team,So currently I have a FTD that I manage via FDM. Am trying to access an internal host from the outside via port 8888 but internally it should translate back to ssh (22). Screenshot is my nat rule. Not sure if am doing something wrong and what...
Resolved! What do these snmpwalk results indicate?
Hello,We're currently doing fine tuning work in our monitoring systems for Cisco ASA and Firepower and we would like details monitoring of the free and used memory.We identified these two OID's to do the job:1.3.6.1.4.1.9.9.221.1.1.1.1.7: Used Memor...
Mgmt interface is in 'shut enforce' modeClient received FPR4100 over two months ago. Rack-mounted it, went through setup mode and hasn't touched it since. The only way I can access FPR4100 is via console port. I can't find how to enable mgmt interf...
Resolved! ASA WEBvpn error
Hello all,I'm experiencing an error on an ASA5585-X only when the vpn is enabled... I have the exact same config on an ASA5515-X and there is no error. Running the latest ASA code and the same cod eon both devices. Upon a reload when the config "enab...
Is there a way to search or filter an ACP on the FMC for rules that has the default "Any" value parameter?The search rules option is the closest but what search parameter to put (ie. on source or destination networks) if I want see the policies that ...
When I restart my MAC I receive and "Attention Required" notification that says "Cisco System Extension Blocked: Your system requires you to enable the Cisco AnyConnect System Extension in your System Preferences in order to leverage the full extent ...
Hello Folks,Hope you are doing well.I am new to to the security and tring to setup a LAB with FTD and FMC.I just configured an interface of FTD from FMC but while deploying that getting error related to CPU and now trying to do it from CLI using API....
Hello, A customer are having some issues with performances when the CPU of there FTD 2130 sometimes reach 90% and start dropping traffic due to occasionally high amount of traffic. This is mostly internal traffic within a Kubernetes cluster. If we w...
I used to work in a role where I used Cisco AnyConnect on my personal MAC to access my work VPN - this was years ago now. Following the uninstall process, everytime I restart my MAC I receive and "Attention Required" notification that says "Cisco Sys...
Resolved! Cisco FTD Rule deny traffic based on OS
Hello, Is it possible to create a rule in FTD to deny traffic to a URL based on a combination of OS and source network? In the FTD dashboard it keeps track of the OS's that flows thru it. I want to create a rule to deny traffic based on the OS and s...
Resolved! Weak SSL/TLS Key Exchange
Hi I hope your doing well in our network infrastructure where we have Qualys to scan for vulnerabilities i can't find a solution for this certain vulnerability here are the details :Weak SSL/TLS Key Exchange impact an attacker with access to suffici...
Resolved! Weak SSL/TLS Key Exchange
Hi I hope your doing well in our network infrastructure where we have Qualys to scan for vulnerabilities i can't find a solution for this certain vulnerability here are the details :Weak SSL/TLS Key Exchange impact an attacker with access to suffici...
Resolved! Azure vFTD NAT rule
We have deployed a vFTD on the Azure environment. The configuration of the firewall is as follows. inside interface ip : 10.2.2.4/24 outside interface ip : 10.2.1.4/24 internal server ip : 10.0.0.6 Also the firewall is able to ping to the server from...
Hello All,I have been working on establishing a certificate between my firepower device and my Windows Server Certificate Authority and have had no such luck. I have followed the below linkhttps://www.cisco.com/c/en/us/support/docs/security/firepower...
