We have observed more count for Unix Critical File Accessed Detected alert from the user “root” on the Host XYZ-FMC-SECONDARY. And also we observed multiple File names which is containing /etc, due to that alert is triggering. Can anyone help me how ...
Forum Posts
Hello, I` am using FMC 7.0.5, connected Firepower 1120.Test PC connected to Inside port of Firepower IPS, Outside port watching to the Internet, policy (logging configured) and routing configured. I can connect from the Internet to Test PC which is i...
Hi All How can i add this commandes on two FWNG 55212 (with HA connexion) and via FMC 6.2.0: FWNG1(FTD) interface GigabitEthernet0/0 nameif Inside ip address @lan-FW1 mask vrrp xx ip @lan-FW1 vrrp xx priority 120 FWNG2(FTD) interface GigabitEthe...
Hi, I configured bookmarks to access by http to my web server on port 8000, after redirect by login it tries to go to standard 80 port, not 8000. I've many services on non standard port on that device. How to resolve issue?
Is there a way to implement pass rules in Snort 3.0 in FTD? It appears the action of pass is available in Snort 3.0 but I am not able to find any Cisco documentation on how to implement it. Creating a pass rule and then setting it to Action = Alert i...
Dears Please check below , when try to troubleshoot ftd firewall for policy and rule with follwing command , system support firewall-engine-debug. the results are coming like below. Please specify an IP protocol:Please specify a client IP address: 17...
Hello, I need to know about ASA file Management, and all kinds of existing files on ASA and where they are installed. I need to know about each file need or signification. Thanks community
Resolved! FPR1010E || Throughput information
Hi, I am planing to implement a NGFW (FPR1010E) in network. Will use it as gateway. All lan to wan traffic will be inspected. My query is if total wan bandwidth is 350Mbps and if i allow all inspection (lan to wan) will it be okay. Is 1010E can handl...
Hi!Can I reimage an Cisco Firepower 1010 with an ASA .bin image (like asa916-1-smp-k8.bin) or it would only work with an .SPA package?
Hello, I have a customer with remote offices spread around the world. We have a project where we going to exchange the ASA's with Firepower 1010's running FTD software and are managed by FMC. The peoples working in those remote offices are not techni...
I am trying to configure the ASA to allow the Internal Network to access web service provided by DMZ web server which is on the DMZ network. Above is my network diagram.In My ASA configuration. interface e0/0nameif insidesecurity-level 100192.168.20....
Hi Everyone, Customer is enabling EDNS which uses > 512B packets. This is then dropped by the inspection policy pasted at the bottom. What would be the best way to bypass this inspection? 1. disabling 'inspect dns' via flexconfig - that is somethin...
Hello Experts I have a customer that has a Firepower Deployment and we have integrated into ISE using PXGrid. We have also created an AD Realm and integrated this via LDAP. VPN authentication is making use of a Certificate and when a user logs on or ...
I would like to setup sort of a single source of truth for time on the network. Our WatchGuard box at HQ already has pool.ntp configured on it and our servers are then getting NTP data from the WatchGuard. I'd like to also have the ASA 5525, who is...
Hello Everyone,We are implementing the 802.1x authentification in our network and everything works quiet well with CIsco phones. The challenge we have is with NO Cisco devices . Please find below the list of devices we have in our organizatiion. Télé...
