My customer has a ASA 5525 with version 9.14(4)7 and ASDM 7.18(1)152He created a new VLAN-sub-interface below his port-channel6. So far so good.But when he wants to create rules for this new vlan, the section is missing in the firewall configuration-...
Forum Posts
How do we get the Firewall Migration tool to run through a Firewall.What are the Public IP's it needs or the URLs?
Hi,I have an ASA with Firepower Services pair which I want to migrate to a pair of Secure Firewall 3110.ASA with FPS last version is 6.6, so it has to be managed with an 6.X FMC. FTD3110 is 7.2, so it has to be managed with a 7.2 FMC.I wanted to do t...
Hello all,My company is having two ASA5516 firewalls. It was installed with IPS as well as using the FMCv, and also enabled with Cisco AnyConnect too. All are licensed.I was wondering if this Cisco ASA5516 FirePower IPS, AMP and URL license [L-ASA551...
I am planning on setting up a couple FTDs that will talk to their FMC via a public IP. From what I can see I can use any interface for management as long as it is correctly configured. Since one of the data interfaces is also the "outside" interface ...
Resolved! FMC/FTD HA failover
Hi,I have a few questions about FTD HA failover and FMC and FTD communication in general.I have 2 FTDs in HA failover (Active/Standby) pair and they are being managed by FMC.Access and platform settings policy are assigned to HA.My question about mak...
Dear Team, Good Day. Appreciate it if anyone can review this task and share the suggestion on if this would a smooth upgrade.. Task: ASA Code UpgradeHardware: Cisco FPR 2130 in Platform modeCurrent OS: ASA OS 9.14(3)18Future OS: ASA OS 9.20.2.2. Than...
Resolved! FMC Domain Management
HIx4 FTD manged by vFMC only x2 in production presently, I want to creat a seperate Domain for The Internet facing FTDsso if I creat a domain called Internet and place the Internet facing FTDs in the domain, I get a warning saying there are deivces a...
Resolved! Packet Tracer SSH Source IP
Would someone be able to let me know if it's a limitation of Packet Tracer that I can't specify a source address/interface for outgoing SSH connections? I've setup an access-class on a switch to only allow access from specific addresses but when I at...
Resolved! rule update in System Updates
Hi to all,curious about rules updates in update submenu of FMC.What is this really for?I can understand the product updates, geolocation updates etcbut what is the use of rules update especially from the support site?please see attached snapshot.than...
Resolved! FTD 2140 upgrade
Hi to all,our two 2140 FTD run software 7.0.6But looking in cisco site i noticed that there is 7.2.5 however the automatic update through FMC does not suggest this upgrade.Any reason for that? Should i manually download and update the two FTDs?Than...
Resolved! FTD CLI ACP vs FMC ACP
Please help me understand the following scenario.I have a L7 application block rule in the FMC yet in the CLI that rule doesn't show a block and quite a few hits.Then if I look at another rule in the FMC that I have setup with a block and compare tha...
FTD & FMC 7.3Inside my prefilter policy, I have a few prefilter rules and no tunnel rules, but my default action under tunnel traffic is to analyze all tunnel traffic. The CLI shows there are hits for this traffic, but I'm assuming if there are no ru...
Is there any option for bug searching using the ASA version like Cisco IOS Software Checker?
IN FMC MODE MY TIME IS SHOWING CORRECT BUT IN FTD MODE CONFIGURED IST 5:30 BUT TIME IS SHOWING IN UTC TIME
