I have a handful of FP 1010s that came with FTD installed. These will be used for a basic S2S VPN connection back to a FP3130. I'd like to manage these via FMC but I'm struggling with the documentation to understand a clear path to getting this acc...
Forum Posts
I have an HA pair of FMC's running v7.6.1.My Standby device is showing an alert "Process Status - the data correlator process exited x time(s)", additionally the Health Monitor is showing "SFDataCorrelator Down" and running pmtool status | egrep -i '...
"I've configured syslog forwarding on my Cisco ASA to send logs to Secure Network Analytics, and the ASA's logging configuration is complete. However, I've noticed that the UDP TX counter for this destination is consistently at 3, which suggests logs...
Trying to get a port forward setup for a server behind the firewall and having an issue getting it to work. The traffic appears to be dropping after touching the outside interface, even though an outside ACL is created for this traffic. Here are the ...
I cannot deploy due to Cisco Client file that is on the FTD. It was fine before and I could deploy no problem. Now that Snort has an update I need to deploy but cannot due to error:The disk is (or was) full during extraction.WARNING: Unable to instal...
After an upgrade from 7.2.5 to 7.4 I lost the interface Eth0. Already added a new NIC on VM as an workaround, or even deleting a file and rebooting but no success rm -rf /etc/modprobe.d/blacklist-sfpacket.conf https://bst.cisco.com/bugsearch/bug/CSCw...
ISE 3.3.0 running on 3615 appliancesIOS-XE 17.9.5 on 9800-40 WLCsWe have some odd behaviour with a new hotspot portal. Everything up to authentication appears to be working correctly - user is prompted to sign in on connecting to the SSID, redirect i...
I have imported an ACP and it is showing under the Default-Policy... is there a way to have it not indented? If I delete the Default-policy will it also delete the "internal" policy showing below it?
We’re encountering the same issue on the newer 7.6 release with 12xx firewalls. Has anyone identified the root cause or received any insights from Cisco? Thanks in advance.
Resolved! Management Interface x Data Interfaces
Hello,I understood that connections to the FTD itself, cannot be filtered using FDM ACE only.So, I'm looking for the right option where I can ensure that the connections to manage FTD (web/ssh) are disable and not exposed to the internet (default). C...
Resolved! FTD Rules
I'm learning the basics of FTD (FP1010) and doing some tests. Using FDM, I create an ACE Rule to block ICMP (any type, any network). It’s the first rule on top of other policies, setup as Block and log. I can see the rule being triggered if I try to ...
Ok, I am in a pickle here. The security requirments for my Cisco firepower 2140 require a pre-login banner to be posted. As far as I can tell there is not place within the FDM to configure a banner, and when I do it via cli I get the error telling me...
Hi All, I have brought secure client licenses and wants to renew it on fmc. Do i need to just refresh authorization or anything else need to do
LAN:192.168.88.254/24ASA5505(branch)WAN:60.0.0.1------Internet------WAN:59.0.0.1CP1555(HQ)LAN:192.168.169.254/24Cisco Adaptive Security Appliance Software Version 9.2(3)Checkpoint 1500 Appliance Version R81.10.10 (996002945)Here's partial running con...
I have a use case where I need to deploy FTDv (FTDv100) in a HA pair utilizing two physical servers with the ESXi (7.0.3 - Dell Version) hypervisor, one FTDv 7.4 instance on each. Following the Cisco deployment guide, I am attempting to leverage SR-I...
