We have two Cisco FMC-4600v7.2.9 (build 44) running in HA is two separate geographical sites. Both were in HA and running perfectly. HA failover also working perfectly. But now it's showing HA Sync Failed. Please find the screenshots shown below.Plea...
Hi everyone, I passed the exam today, but the report shows only percentages, not the actual marks. I would like to know the minimum percentage required to pass the exam. Best Regards, Ye Htut
Hi All, I'm in bit of a pickle here as I have a task at hand that has 2 FMC's and 2 FTD's present: Below is the scenario; In an existing setup that constitutes of a FMC(VM) and local FTD's deployed in HA, lets call them FMC-A and FTD-1) are in produ...
hi Cisco experts, can someone teach me how to use FMC API to get all the members of a given network group object? and how to create an network group object and add all the members using API.
Hi All,I'm seeing tons of %FTD-4-419002: Duplicate TCP SYN from Inside:x.x.x.x/36769 to OUTSIDE:y.y.y.y/80 with different initial sequence number on multiple FTDs where the source IP x.x.x.x is ThousandEyes Enterprise agents' IPs.I've found this doc ...
I have lately realised that there is no way to actually figure out the physical interfaces used by a port-channel in FTD 4110s or 2120s or probably any FTDs through the FMC gui or FTD cli. I asked TAC about this and they also advise there is no way t...
as cisco firepower 2130 throughput is 10 Gbps raw and 5.4 Gbps NGFW and ISP and 760 Mbps when TLS decryption is enabled . Is this 760 Mbps is the overall throughput of the firewall when TLS decryption is enabled or non TLS traffic can pass through 5....
I have 2 x FTD2110 managed by an FMCv, all v6.2.2. I'm trying to create an HA pair using an EtherChannel rather than a single physical link. However, only the physical interfaces are appearing in the dialog box to create the HA pair. The documentatio...
Hello Experts,We have a Cisco Firepower 2130 in production running version 7.4.2.4 which we manage via FMC. A Port-Channel with a VLAN has been configured on the FTD with its own IP address serving as the gateway for DHCP clients while the FTD serves...
On some pages of the report, the columns are shifted to the right so that the hitcount column moves closer to the page margin. Sometimes, it is too far over, and this column is dropped from the report. Workaround to deliver in html works OK so far.
We are having issues establishing a port-channel between an FTD 3110 and ASR 920. FTD LACP mode is set to "Active" while the ASR is set to "Passive". But it doesn't work.However, we have seen the FTD 4110 with an LACP mode of "On" and ASR "Passive" w...
We have a 3110 with version 7.6 managed by FMC 7.6. The flow is User >> WLC >> Core Switch >> Cisco FTD >> Internet Switch >> ISP Router 1 & ISP Router 2. On FTD we have created sub-interfaces of 10 Gig link and we have two 1 Gig links from ISP. We a...
I am configuring always on VPN with TND on a Cisco ASA 5508, the client downloads the profile correctly, and correctly recognises when it is on a trusted network, however when we move to an untrusted network I get the error "anyconnect cannot confirm...
We've a customer who wants to deploy some vFTDs in AWS with auto scaling, most of this is ok but I'm stuck on how we monitor (ping, SNMP poll / traps & netflow) firewalls which both:Allocated IP addresses using DHCPAre auto created by scripting, so t...
Hi All , After done install and configure ASAv . If I want to upgrade Esxi Version from 6.0 to Version 7.0 Can I do that , Now ASAv Version 9.16 . I try to check ASAv can support Esxi 7.0 but I'm not sure about process upgrade esxi software . What wo...
