Currently got FMC 7.3.1 upgraded from 7.2.4 and im getting a Health Status warning saying Sybase Status - Test Failed.Have tried the following:pmtool restartbyid slapmtool restartby id TomcatHas anyone come across this issue and how to resolve?
Forum Posts
Hi to all,i am trying to implement a site to site IPSec VPN between an FTD-HA pair and a cisco 2821.Till now i haven't succeeded in doing so , but before starting to dig dipper i would like to ask you if there are needed any special licenses for this...
I have Cisco C9200L-48P-4G with ISO 17.03.04b.I do have the below configurations.ip ssh server algorithm kex ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group14-sha1ip ssh client algorithm kex ecdh-sha2-nistp256 ecdh-sha2-...
I've just downloaded "Cisco_Secure_FW_Mgmt_Center_Virtual_VMware-7.2.0-82.tar.gz", however when I open it with WinRar I get an error and there is only the .vmdk file shown in the archive. I've verified the SHA-512 hash and also tried WinZip and 7-Zi...
As the title asks - I'm not referring to the FTD sending traffic (I know it does), I am wondering if there is a way for the FMC to relay the connection events in its internal buffer? I see Audit Logs allow my to forward syslog messages. I can't see...
Resolved! Downgrading a Firepower 2110 to ftd 6.4x
I need to downgrade a new 2110 with an ASA image to ftd 6.4.x. I've done this with no problems to 7.3, but here's the problem. The 7.x image is a .SPA and 6.4 is a .tar. When I follow the procedure I previously used here, I get the following failure:...
For some context, we have dual Firepower 2140s in HA managed by FMCv. Both FTD and FMCv are on 7.2.5.1 as of last week at the start of 2024. We currently utilize our FTDs as external firewalls and head-ends for both site-to-site VPNs and Remote Acces...
I am unable connect to the Cisco ASA 5506-X with putty but I'm able to connect to the old ASA 5505. Recently, we replaced our ASA 5505 with 5506-x and whenever I try to connect to the new ASA I got this error message" Selected host key algorithm does...
Hello!I want to implement this network with the technique router on a stick to perform intervlan routing.The first router connected to the ISP will be the edge routerThe firewall is ASA 5505The second router will be the internal routerHow do i imple...
I'm having a strange problem with an ASA. Its a pretty basic setup with a FPR-1010 running an ASA image (version 9.18(2)). I have webvpn configured, but disabled right now for troubleshooting. The issue I'm having is that no matter what access-list i...
Hello everyone,I did spend quite a bit of time searching for the MTBF for the FPR1120 Firewall with the ASA Image but couldn't find it yet.Does anybody have an idea where to find the MTBF for that device? Thanks and all the best kurt
Resolved! Is FTD’s control plane wide open?
I was looking into setting up BGP on an ftd and was wondering where to allow TCP179 and then I realized there is nowhere to even add this as an access entry. Same goes for VPN. Is this not wildly insecure?
Hello, I am using Cisco Firepower 4112 Threat Defense v7.2.4. I have to configure 5 syslog servers, will this cause any performance issues?Note that I send with port 514 UDP and through management inferface.
Hi guys, I have this issue for a long time now. We have two pair of FTDs in HA in two different DCs. We have VTIs setup in both HA pairs going to each remote site. This case have been with Cisco TAC for a long time and we still not get to the real pr...
Dear Team.I have a Cisco ASA 5506. We have several internal servers that require public access. In addition, we have purchased public IP pool from our Internet Service Provider (ISP).Currently, we have one WAN ip assigned directly to our WAN interfac...
