I am running frp9300 inter-chassis cluster and I have a FMC HA running. When i am trying to register the logical FTD it connects to primary FMC fine but doesn't register under secondary FMC as its on a different subset. FTD Br1: 192.168.1.2GW:192.168...
Forum Posts
Hi, Is it feasible to have my FMC in HA but with different subnet? If yes, how will the FTD synchronize to the standby FMC when the primary FMC goes down? Thank you
there is a bug that makes my company's ASA 5516x suddenly stop responding, its powered on and lights going off and on like its operational but nothing is responding no data going through, no access ssh nor console is working (its like your PC on and ...
Hello! I have this confusion about FTD regarding actions in ACP and PREFILTER... Starting from the idea that:In ACP action Trust= bypass any inspection/snort and is permitedIn ACP action allow= permit but is passed to inspection/snort for further ana...
hello experts , we have ASA 5525 and want to send and receive the emails from internet and use behind the asa on-prem DNS server and on-prem Microsoft exchange server with the below map exchanger server internal IP 192.160.10.5 Domain controller in...
Hello, There has been quite a lot of attacks related to the Akira Ransomware, where the attackers are using a vulnerability in Cisco RA VPN. https://www.truesec.com/hub/blog/a-victim-of-akira-ransomware I can see that Cisco have patched the CVE-2023...
HelloI have a Firepower 1120 with no Internet access.How do I configure the device to use internal DNS and NTP?Thanks
Resolved! Object NAT on ASA 5525
Good Morning All,Not sure why this isn't working but I have a ASA 5525 running Version 9.2(2)4. What I am trying to do is add an Object Static NAT. Now on the firewall I see how similar policies are configured and I copied the config, minus the IPs...
Resolved! Rapid Threat Containment
Hi, just wondering, if I can still do Rapid Threat Containment if my FTD (firewall) and FTD (IPS) are separated? Those appliance will be integrated to ISE pxGrid node. Thanks
Hi All, I need your help. We've been dealing on this issue for a couple of months. So the issue is when users connects on our Guest Wifi once they are on office they getting a message no internet. So to fix this they need to turn off/on the wifi then...
It is not installed, it is not a service. Is it necessary to load SP1 when doing incremental upgrades for CSM? We're trying to upgrade to 4.28. We did have CrowdStrike uninstalled thinking that might be a problem. Thanks in advance for any advice. ...
Hello Friends Could you help me to fix the issue in my FTD integrated FMC I have a webserver internal need to port forward 443 and one more windows server need to do same 3389 Kindly help me I getting confusions and struck in NAT Policy and ACP Exam...
Resolved! FPR 1010 ASA HA / Failover issue
A customer removed one of what I was led to believe (install was by a previous company who did no documentation) was a standby FPR1010 that was in a HA pair and sent it back to us due to a fault. It turned out there wasn't any issues with the 1010 an...
Hi.We have an old ASA5555 (in HA) where we wanted to disable the SFR-module for a couple of reasons. We removed the config for the SFR-module:class-map FW-VRF-Firepower-ACLno match access-list Firepower-ACL-VRF-FWexitpolicy-map global_policyno class ...
For those who have to deal with STIGs, https://en.wikipedia.org/wiki/Security_Technical_Implementation_Guide, do any of you know if there's an automated check like SCAPE for Windows machines.I ran into some information on OVAL but that's pretty dated...
