Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...
Forum Posts
Resolved! RDP access from using PAT
Hello,I am using Cisco Firepower FTD 1010, the idea is to understand how to Access RDP from HOST A to HOST B and vice versa. The Idea is to Use NAT OVERLOAD from Inside to Outside (PAT) and Outside to Inside.
HI, Getting following logs on Cisco ASA firewall, Avaya phones are getting disconnected. Please let us know how to fix this issue. log on ASA: Unable to Pre-allocate H225 Call Signalling Connection for faddr
Hi to all I have to configure anyconnect from the guest-wlan with external dns-servers configured. NAT is needed to translate the public ip addresse of the firewall outside interface to the private ip adress of the firewall-interface terminating the ...
Hello everybody,our customer has a FMCv 7.0.4 and two Firepower1120 running 7.0.4.This morning I got a ticket because high CPU load on the FMC: Service: CPU Load (nwc_cisco_cpu-load) CRITICAL - load-15 is 15.81 (15 min Load Average too high (= 15....
I have FTD1010 and customer want to have dual ISP Active\Standby and LTE 3rd backup So he need high availability by using dual ISP contention Active and Standby, and in case both ISP are down he need 3rd LTE backup for selected Phones and Computers o...
We have several FPR1010 with Firepower Threat defense that is no longer possible to upgrade, due to that tasks are "Stuck" in the list.It is related to version 7.1.0.1-28 and 7.1.0-90We have tried to solve this with some expert commands about the bui...
We have Email alerts configured for Intrusion events.We also have a Correlation policy to send an email alert for Intrusion Events that drop.During our initial testing, we received the alerts. However, all subsequent testing produced no email alerts....
Hello All,We need to leak routes for specific audio cloud hosts from GRT to User vrf and reverse leak as well. But I couldn't see the destination leaked routes in GRT and networks aren't reachable.Could someone suggest some progressive comments or id...
Resolved! FTD security level 0
Hello Guys, I am new on the Cisco FPR 2130 device. Some questions below after hands-on pratices: 1. The default config contains inside and outside interfaces. But why do they both have security-level 0 ? Do I need to change it ? How ? (I didn't fi...
Am I missing something? Is there really no way to enable/disable specific rules in an Access Control Policy with FDM like with FMC or on the ASA. I have searched online and can not find anything. How is that even possible? I'm finding FDM is almost v...
Hello everyone, I can not connect to the internet or ping the gateway or the outside interface from my host in the inside network. These are my settings: :: Serial Number: xxx: Hardware: ASA5510, 1024 MB RAM, CPU Pentium 4 Celeron 1599 MHz:ASA Versi...
Hello. Simple quick question...Inside the LAN I'm installing a new vendor's Cisco box that has a preconfigured VPN to a server on the www. All communication will originate inside this new box that connects to a switch that connects to the inside inte...
Our Firepower Threat Defense SNORT engine is triggering rules that don't match the actual traffic.For example, rule 1:16540:18 references CVE-2010-0477 which has the description: The SMB client in Microsoft Windows Server 2008 R2 and Windows 7 does n...
Resolved! FTD - IPSec failed
Hi everybody, I have an FTD with FMC that must have a VPN tunnel IPSec with a router. I have configured the FTD following all the instructions but I receive the message log error "Failed to authenticate the IKE SA". Reading the debug messages I found...
Hi Cisco SMEs,my problems has been raised problem has been raised before, sometime ago in 2017 see this Community post on "Defining custom PAM or protocol for ZBF", and here "IP Port map custom protocol in IOS XE".Both of these only identified that t...
