Hi team,I can't seem to find Cisco documentations which details what each permissions would do hence asking question here.Any idea or is it possible to grant permission/s to use "Find Usage" in Object manager to locate rules etc that particular objec...
Dear Team, We have an FTD cluster in HA (a/p) managed by an FMC (all on version 7.4.2) and we are redesigning the architecture of the current solution. The new solution is intended to have two internet links (primary/secondary) with dynamic routing (...
Hi All, I'm having ftd 3100 series FW as Core and MX 105 as Perimeter Fw. Can i use CD-fmc to manage FTD fw Pls note- FTd is not directly connected to internet and we use it as a internal FW
Hi All, I have came through that Snort is only compatible with sensors embedded below Cisco products, However my organisation brought IE-3300 series OT switches. Please guide me here Cisco IC3000 Industrial Compute Gateway Cisco Catalyst 9300 Serie...
Hello,We have a pair of Cisco ASA 5525-X and would like to migrate them to Cisco FPR-1140's.I started the migration and ended up at this screen: My intention was to set up a virtual FMC but I am not sure what version would satisfy my ASA units.Furthe...
Hello, A customer have about 20 Firepower 1010 H/A pairs. Randomly we will see alerts about high system CPU and at the same time there is also an alert about "Process vaultApp exited" This seems to match the following defect FTD Vault process exits ...
Just checking community to see best option to reach multiple internal say web servers from certain sites across WAN/internet on the FTD?I was thinking say manual static NAT to an object-group which contains the internal server objects or something?
Dear Team, Cisco Firepower 1120 NGFW peer failed after hotfix update. Current version 7.4.2.1-30 but after update on HA Cisco_FTD_SSP_FP1K_Hotfix_BR-7.4.2.2-1.sh.REL.tar , secondary HA device unable to ping & SSH also not accessible in GUI. Only acc...
Hi All, Have 2 quantity of MX 105 with below part code licenses. Would i need per device licenses or 1 work as im going to configure warmspare Meraki MX Large Essentials EA 3.0 LIC and Support
Greetings - We have a Firepower device managed via FMC and need add a large number of ACLs to the control plane. Adding the ACLs using the GUI is time consuming and cumbersome to maintain. This is a process we would historically script with the ASA...
I am attempting to use ACME to register a letsencrypt certificate per:https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-asa/222809-configure-certificate-enrollment-with-ac.html#toc-hId-1431558463I've tried it on several Firepower 10...
I am trying to use Secure Syslog over 6514. In the past we used the diagnostic Interface as Source(on other Firewalls), and it is working.I am seeing inconsistencies in the TLS Communication of me new FW. So i remembered that the Trust-point has to b...
Hi All,I have deployed 2x FTD 2140 in a HA mode. These are managed by FMC (version 7.2.3).What i am try to achieve is configure one of the data interfaces on each FTD to use as inband management interface. I will like to use this data interface for F...
Hi CISCO DEV teamCan we please keep security zone under objects on FMC? before I upgraded to 7.4.2, There was security zone under objects on FMC, later, you give it a new name "interface" instead of security zone. you make things complicated. it was ...
Running into an issue with AnyConnect and OKTA SAML with 90 second delay between authenticating and actually establishing the connection. Initial login/redirect/MFA is quick then the client shows "establishing connection.." and 90 seconds later (giv...
