Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...
Forum Posts
We have our headquarters in Japan and they have issued 10.240.0.0/13 subnet for use in the USA. They are reporting that unused IP's on this subnet are causing loops on their core switch. They are asking us to put a null0 route statement for that sub...
I'm trying to setup external authentication for a 6.5 FMC but running into some issues. Currently the FMC has LDAP authentication setup for AnyConnect connectivity, and if i try to Fetch DNs or Fetch Attrib those both return values, but when I try t...
Resolved! DHCP on sub-interface
Hello, I'm configuring a Firepower 1010 Appliance. I'm very well versed in FMC and larger boxes so the FDM is a bit new to me.How or can I configure a DHCP server for internal clients on a sub-interface?
Hi everybody, my name is Stephanie and I connect customers with the teams working on new features for security products such as CDO, FDM, FMC and more. I'm reaching out today because we are looking for people to give feedback on Cisco Secure Product...
Hi everyone.I have problem with cisco FTD when i want to block encrypted or password archive files like RAR or ZIP.I have configured FTD to block encrypted archive in AMP(File) Policy and attached to ACP but not working. all encrypted archives will p...
Resolved! FTD Threat Detection managment
HelloI have FTD 6.4.0.8 with FMC, hardware ASA 5525-X.And i have a lot of syslog messages: "[ Scanning] drop rate-1 exceeded. Current burst rate is 5 per second, max configured rate is 10; Current average rate is 16 per second, max configured rate is...
Hi,I have a cisco firepower that is new and am having issues with issuing the above command. Logged into the FMC and get to a prompt >Tried the above command and not working and no other modes I try work either ?Any ideas ?Thanks,
my inside PCs is able to ping the server farm , use all the services in server farm. but the outside doesn't seem to be able to reach any services in server farm there is an nat object configured to ensure that all internal pc gets translated . not ...
Hi guys , i'm trying to make all my PCs at the right be able to reach the ISP on the top left. but the packet seems to stop at ASA0 firewall. i've configure default route and it's still not working .Also, my VLAN 20 (Sales) is unable to ping all ser...
We have a standalone Firepower 1010 that is running FTD code and lost power and now won't startup successfully. I can ping the mgmt ip and ssh to it and it will allow me access but I get the following output: ast failed login: Fri Aug 11 17:38:11 UT...
Hello.I need to stop a public IP address from entering the network. (I dont understand how it has access.)If I configure an ACL, then it seems if i do not put at end of ACL "permit IP any any", then all traffic will be denied; however, if I do put th...
The server team will be replacing the existing AD servers with new ones shortly. The new servers have been added to the network using new hostnames and IPs and will live side by side the old servers until everything else is confirmed OK at which poi...
Hello Team,Decryption is not happening on windows vm which is residing behind the cisco FTD,I followed below steps for generate the certificate.1. openssl genrsa -out server.key 40962. openssl req -new -key server.key -out server.csr3. openssl x509 -...
Resolved! Can Cisco FTD block DDoS attack?
Hi Good People We have cisco 2100 ftd managed by FMC. Can this block DDoS attack or any model of ftd or do we need any license?
Hello, we have a pair of FTDs between an on-prem data center and Azure and would like to use DNS roundrobin to load balance the client vpn connections between the pair of FTDs. The DNS name obviously would have 1 single A record pointing vpn.domain....
