Hi Everyone, Just wondering if there is a preferred way to add a new pair of FPR2130 to the FMC so that it can be managed and also there will be no connectivity issues or configuration lost. Thanks!
Forum Posts
Hello Fire-Jumper Community,I'm have a FMC in which I have added 1x Firepower 4120 FTD Instance and 8x ASA5508-X FTDs. I am currently unable to get my FMC to register another Firepower 4120 FTD which is in the same network.Connectivity Checks:1. FTD ...
Hi, is there a way to change the username attribute which is synced from AD to FMC for the purpose of identity FW? Right now, when I hit sync the user names are taken from the field pre-Windows 2000 (which is only user's last name) but the user is au...
Hi,It seems to me that the Network categories of Security Intelligence , for use in FTD policy, have changed in the last couple of days. there seems to be a huge number of entries in Bots compared to before. The number of entries in Malware seems mu...
Resolved! FMC Deploy failed
Hi all,I have a problem with Deploy configuration to my Cisco ASA5516-X via FMC (firmware 6.2.3.18).I tried deleted access list where is an error - still problem. I tried recreate same problem, restart FMC, ASA: same problem.Any idea?Here is output:R...
Resolved! Expoting ASA configuration
Hello,I was wondering if you can export ASA firewall configuration to firepower.I want to switch the ASA with the firepower and do not want to create the rules all over. If i can export them from the ASA to the firepower (Via FMC), it would be great....
Hi,Are these two ip ssh commands related?If I set "ip ssh dh min size 4096", does it mean kex below DH group 16 (i.e. diffie-hellman-group14-sha1 and diffie-hellman-group14-sha256) won't be allowed when I config "ip ssh server algorithm kex" for ssh ...
Hello, We have an issue receiving errors for failure in connecting to the Cisco Cloud Services. We cannot use internet access directly and on the Management interface there is a proxy configured but the error persists. Is there a separate proxy confi...
Hello, We have doubts about how the ARP tables of the ASA/Firepower may behave. I explain the situation we have, I have attached an image with the topology we have right now. The objective is to remove the IPS (which are in transparent mode inspect...
Buenas tardes, he intentado hacer un reseteo de las configuraciones que tiene el firewall pero no me las aplica, he buscado y observado que no me carga el archivo .bin para llevar acabo dicha accion, alguien mas le ha pasado ese problema, adjunto una...
Hello Guys,Is it possible to have ftd managed or have two managers, fmc that is? say one in DCA and another in DCB?If yes, how does one make manager fmc primary over the other ,and invoke either to be master depending on need-basis?Thanks.
Hi, i've 2 FTD 2130 which are working in HA. What is the proper way to add them in FMC? I saw already how to add them separately and then to make HA through FMC... Thanks, Nikola
Resolved! FTD Management using FMC over VPN
Hi, I'm confused as to how to manage a remote FTD device using FMC located at another site: FTD (site 1) --- VPN --- [ASA w/ FP --- FMC] (site 2) With ASA I would select a "management" interface to manage the ASA over the VPN tunnel, but how do I acc...
Hello, We want to disable esmtp inspection for specific traffic only, but not globally. We want to convert this FDM configuration to FMC flex-config if possible: access-list MATCH_ACL permit ip host 192.168.1.55 host 198.51.100.1 class-map MATCH_CMAP...
Resolved! FMCv and Linux Compability
Please, does FMCv contain already a LIC Linux to run in OVA format, for example? What is compatibility matrix between FMCv and Linux? Thanks!
