Hi,I bought a Firepower 1010 NGFW for a small office and it does route traffic generally to the internet I can't seem to get the Geolocation, VDB, Security Intelligence Feeds, Intrusion Rule. NTP doesn't update either but is set to use (0.sourcefire...
Forum Posts
Have two HA clustered FTD2130's managed by FMC and I am unable to upgrade the FTD's past 7.2.1FMC currently running 7.3.1.1FTD's running 7.2.1...trying to get them up to 7.3.1; All policies on the FTD's are up to date.FTD's working normally in a HA c...
A security auditor has requested we show how our FMC/FTD security devices comply with the following two controls. What can I show them to satisfy these requirements?TIA,SC-5: Denial of Service Protection:The information system protects against or li...
Hi, I have upgraded my FMCv and FTD from version 7.0.6.2 to 7.2.0 to finally migrate to 7.2.5. However, I can't jump from FTD version 7.2.0 to 7.2.5 because the readiness check Failed. I realized that the FTD statistics couldn't be shown after the up...
Can someone help to find out mitigation of CVE-2024-20271. as per cisco, there are saying work around is not there and fix to upgrade version. However, the http where this info is updated is saying that vulnerability is affected to AP.For my device,...
Resolved! Firepower 2130 - Factory Reset
How do you go from appliance mode back to platform mode? We are trying to convert our Firepower 2100 to running FTD. We've tried booting in rommon and applying factory-reset and boot, it goes back to loading the ASA in appliance mode. These commands...
Resolved! NTP vulnerability issue
Hi all, From the vulnerability scan, we got the below issue for NTP for Cisco 3850 switch. Could somebody please advise how to fix it. An NTP control (mode 6) message with the UNSETTRAP (31) opcode with an unknown association identifier will caus...
Resolved! Cisco 1120 upgrade question
I currently have an 1120 running in appliance mode on ver 9.16(1) and need to upgrade due to a vulnerabilty.The current recommended version is 9.18.4.29 (June 2024), although I would be more tempted to go for 9.18.4.24 (May 2024)I cant find any docum...
Hi All,I downloaded the asdm-openjre-7191-90.bin (Cisco Adaptive Security Device Manager for ASA 9.8-9.19 integrated with OpenJRE) BIN file and I have no clue how to execute this.I did some googling and from what I found you need to burn it to a CD a...
Hello All,I have a brand new Firewall 3105 and we have completed the initial setup and inside and outside interface,route and nat configs. Before the cutover of production traffic from existing firewall I need to test the traffic with Sample policy i...
We have FMC and FTD , In FMC we configured Blocked traffic ACCESS POLICY , but while checking in FTD(CLI) one more ACL( Ifc Outside any any allow) showing with same rule-id 26844160. any ideas how to find this ACL in FMCACL in FTD ========access-li...
Company's FTD license expired and I am trying to review any documentation to unregister the expired FTD license and install this temporary one. License was done as a SLR and in an air gaped deployment. Wanted to first try this forum before submitting...
I have three c1000 switches in my environment that are returning the following finding on our internal vulnerability scans: Name:Diffie-Hellman Ephemeral Key Exchange DoS Vulnerability (SSH, D(HE)ater) Severity:High CVE:CVE-2002-20001 Descri...
Dear Folks, I have Cisco FPR-4112-NGFW running with Cisco ASA Image with multi context mode. My customer wants to move into FTD image. running with multi context mode?Can we run Multi context with FTD image on FPR-4112 platform? In FTD, Will Multi co...
Hi,I am charged with replacing our ASA 5525 with a Secure Firewall 3100. the current ASA is bloated with a lot of dated configuration. However I have managed to consolidate the NAT rules but there are still a lot. How do I copy/paste the NAT from ASA...
