Network Security

Resolved! sla configured with FDM is in pending state

I setup a couple of SLAs on an FTD v7.3 using FDM but they are in pending state and I can't see where to start them. Below are some show commands from the CLI. Any ideas? TIA route outside1 8.8.8.8 255.255.255.255 1.1.1.1 1route outside2 75.75.75.7...

Possible to Use FTD as DHCP Server with multiple DNS servers

I'm in a situation where I need to use the FTD as the dhcp server for both my guest and internal subnet. At present I have it configured to give out my internal domain and dns servers. Can I use a FlexConfig configuration to modify the dns settings...

FTD1150 with no traffic, Snort is using 95% CPU

I am testing new FTD1150's. There are no connections or traffic flowing through. But Snort is causing lots of high CPU usage alerts in FMC. TAC is saying to revert to Snort 2 and not use 3. This cannot be a real solution, can it?

FTDv Demo License

Hi TeamWhere can i get my hands on a FTDv demo license

Resolved! FMC 2600 7.0.5 (build 72) Warning when deploying ManualNatRule

Good morningHave this warning when deploying, but could not find where are the NatRules (1-15), have only 8 NAT RulesWarning: [ManualNatRule 1] This rule uses an interface object that contains no defined interfaces..... Warning: [ManualNatRule 15] Th...

Syslog on Snort 3 intrusion policy

Hello,So, in Snort 2 theres an advanced setting menu and i can enable syslog from there. So in Snort 2, i can only send intrusion event to the SIEM from the intrusion policy.But, when i try to configure the same thing in snort 3, theres no advanced ...

Firepower 4115 Multi instance - Expert mode

Hello Comunity I have a customer who is looking to enable expert mode on Firepower 4115 running multi-instance We are having issues with high unmanaged disk space (94%) /var on version 7.2.2 (suspect we are hitting -https://www.cisco.com/c/en/us/su...

FMC FTD Device Removal

We currently have a ASA5516 with the FMC 6.6.1. We decommissioned a site-to-site vpn tunnel we had to a remote office that had a FTD 1120. Can I simply Click on the Devices, and Delete the 1120. The office is closed and the 1120is no longer con...

Change IP address of FMC HA standby node

I have a pair of FMCs in HA with a few devices registered and failover is working as expected. I need to change the ip address of the standby unit so had some questions: 1.) To re-establish HA, do I need to break HA on both devices (at the moment ...

Resolved! Smart Registration licensing URL(s)

Hello All, We have a ASA 5512 running Firepower 6.2.3.6-37 software. We recently reimaged our ASA from the old ASA software to this new FTD software 6.2.3.6-37. Our internet access is controlled by another higher dept and restricted to a few specif...

Block establish connection rule on FMC or FTD

Hello,I have created Time range in Object Management from 08:00 until 09:00 AM and inserted into created rule from outside to inside PC allow connection for the specific time mentioned before. I`ve checked time zone and synchronization on FTD and FMC...

Access to Cisco FTD via SSH

Hi all, I have a cluster of 2x FTDs running on 2130 with version 6.4.0.9 which is managed by my FMC. In the threat defense policy which is applied to my FTD cluster, the Secure shell settings in my platform settings is blank but i am able to ssh into...

Resolved! FPR2110 with ASA image after re-imaging to FTD

Hello All, We have two Firepower 2110 appliances with the ASA code and I want to re-image the appliances with the FTD code 6.6 or 7 so my question is when I do the re-imaging and add them to the FMC do I need any type of licenses to configure them as...

Firepower 2120 Enable FIPS Mode

I have a Firepower 2120 running FTD 7.3.0-69, using FDM. I've tried to enable FIPS in the CLI but get the below error. /security # enable fips-modeWarning: Connectivity to one or more services may be denied when committed. Please consult the product'...

Resolved! DMVPN tunnel with "if-state nhrp"not working after upgrate to 17.06.03

Hello I performed upgrade on my ISR1K and ISR4K spoke router. DMVPN didn't come up until I deleted command "if-state nhrp" under tunnel interface. It stuck i NHRP state Does anybody have an idea why? Regards, Emina

Network Security

Forum Posts

Resolved! sla configured with FDM is in pending state

Possible to Use FTD as DHCP Server with multiple DNS servers

FTD1150 with no traffic, Snort is using 95% CPU

FTDv Demo License

Resolved! FMC 2600 7.0.5 (build 72) Warning when deploying ManualNatRule

Syslog on Snort 3 intrusion policy

Firepower 4115 Multi instance - Expert mode

FMC FTD Device Removal

Change IP address of FMC HA standby node

Resolved! Smart Registration licensing URL(s)

Block establish connection rule on FMC or FTD

Access to Cisco FTD via SSH

Resolved! FPR2110 with ASA image after re-imaging to FTD

Firepower 2120 Enable FIPS Mode

Resolved! DMVPN tunnel with "if-state nhrp"not working after upgrate to 17.06.03

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

compartilhar internet com VLANS firepower asa

HOSTSCAN modo Monitoreo en Firewall ASA 39 / 5.000 HOSTSCAN Monitoring

How to Specify a PAC File on FMC Policy for Secure Client

CSCwk14305 - "Unable to unlock or revert SED" observed after rebooting

Assign Multiple IPs to a Single BVI on Cisco FTD in Transparent Mode

FMC 46k HA - after rebuild HA Secondary doesn't register Chassis

FTD not receiving SGT inline

Help setting up FTDv in Azure

How to configure Port Forwarding on FTD

Compatibility matrix for FMC and SFR