Can you upgrade the FMC 4500 or 4600 appliance that currently has 7.0.4 software with Cisco_Secure_FW_Mgmt_Center_Upgrade-7.2.4-169.sh.REL.tar?I noticed current 7.0.4 is not Secure (does not show Cisco Secure). Any negatives about doing so? I don't ...
Hello, Sorry for my bad english. I am a novice in networking and especially in the use of the Cisco ASA firewall. For a project at school I have to use SecurityOnion to monitor the traffic in a Cisco ASA firewall. The problem is that I was able to d...
Is it possible to send ASA control-plane traffic to the SFR module so that we can create a GEO block rule for VPN connections?
Hi,I've noticed when a particular on-prem host downloads a large dataset from AWS S3 using SSL/TLS on tcp 443, my FTD 6.6.5.2 has its LINA CPU spike by 20%-25%. The flow is 800Mbps for several hours. I identifed the traffic and fastpathed it using pr...
Hi Team,I am not able to see the ASA Firepower option in the ASDM. Not really sure why. Reachability from our server to Firepower over 443 is working. But when we try to connect via ASDM it is not working. Regards,Sanjay S
Hi everyone,I have some questions regarding the FTD pre-filter policy and access control policy. I understand the theoretical difference between the two: the pre-filter policy inspects traffic up to layer 4 only (without deep packet inspection up to ...
how do i display access-list on the ASA firewall with no hitcounts only?we have thousands of ACL and wanted to do a cleanup.I cant remember something like show access-list | b/i/e xxxxxx
We would like to request for an advice for the below vulnerability on Cisco Anyconnect : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ac-csc-privesc-wx4U4Kw Our current version info as below: Cisco Anyconnect...
Hello together, we are getting the following error messages in our FMC -> Monitoring -> Syslog. Do anyone have a solution for that? - We running FMC Version 7.2.2 Thank you! Kind regards Nils
On a FMC/FTD environment, any ideas how to intercept and redirect NTP and/or DNS traffic from specific clients? There are a few appliances with hardcoded NTP/DNS entries, which I would totally prefer to use my internal systems to provide them access ...
Hello together, we running a Firepower 3130 Active/Active Cluster in our environment - actually we facing the issue that we cant backup that active/active cluster as also described in the Cisco guide. Is there a way to perform the Backup through FMC,...
Hi, I am trying to bring up a cluster interface for which I have used a Layer 2 switch and Cisco ASA. I have identical ports connected at both the ASAs which terminate in the switch. I am using LACP mode active at both switch and ASA but the port-ch...
hi all,was doing some troubleshooting for allowing ICMP on one of our ASA (8.2) and got stuck with ICMP type and code.i've searched that ICMP type 11 is used by windows (link below). but would like to know what are the other ICMP types especially use...
Hello,We have a firewall cluster made up of Firepower hardware appliances, each simultaneously running a piece of ASA firmware and a piece of FxOS firmware. This deployment mode is Firepower "Appliance mode".The cluster can communicate directly with ...
Hello,I am using the following guide to set up AD external authentication over TLS and getting the following error: Opening connection to LDAP server - XXXXXXXXXX:389 - ldapCurrent TLS Require Cert: 4Current TLS CACERTFILE: /var/tmp/HsmvFZQrBM/temp0....
