I have a customer who wants a new site to have the same firepower firewall configuration (except the site-specific items) as another properly functioning site. When asked for the firewall configuration information, they sent a 34MB .txt file that lo...
Forum Posts
Hi all!I have two Cisco ASA 5585 in failover, Software Version 9.8(3)18.I need to make Port Forwarding with NAT for access from outside host through ASA's interface to inside host. I made settings as always, but the access doesn't work.There are part...
Guys Please help me ..why showing ID numbers instead of policy name in cisco ftd firewall access policy? also this policy not get hit when access from client pc falcon.crowdstrike.com. please check below results : system support firewall-engine-...
Hello all, FMC is not displaying any data in the Product Updates widget. I can see the "animation" showing that is loading, but that never finishes. All other dashboards and widgets are working correctly. The FMC is the 2600 appliance, in version 6.6...
HIOur FTD.s are running on version 7.0.5, Is it possible to implement PBR on this code please.?And also here is my senario I would like to send part of a /21 network which is in its own VRF on the FTD down a IPSEC VPN for its gateway and keep the oth...
howdy folksif i am t-shooting a weird behaviour coming out of one site, we have 2100-series FTD pair.should i PAUSE HA first....then do Restart Device via FMC....or simply Restart Device on the Secondary (non-active) unit....then do a Failover....wa...
Hi allI have an issue setting up SLA on the FTD. (Using FTD GUI) On my old ASA I use 8.8.4.4 as the monitor address for the SLA and its been working for years. On the FTD the second I use any dns ip for the monitor part it fails the line and switch...
Hi All,below is a snippet from an ASA pair in active/standby mode but with standby unit showing as failed.suspect it is because of the SFR missing form the standby FW (only installed on the active unit). did the no monitor-interface service-module bu...
Hey i have a switch, some ap’s with controllers and a ASA 5550 but no router. my questions are: 1. Can I use the ASA instead of a router or do I need a router? I’m planning on configuring vlans so I need something where I can configure router in a st...
Hello Team, I am working on a spreadsheet that lists the current firmware running on our devices, including the date it was installed. Is there a way to find the date of firmware installation on the Cisco FPR2140-ASA-K9 ?I used the sh version command...
Hi GuysI am looking to set up saml for my remote access vpn. I have done this on some ASA 5545 that we have but I have come to do it on an ASAv running version 9.12 and the method on the gui does not have the option for SAML.Any ideas why this is ? d...
I have another issue on a new vFMC & FTD 2110 7.3.1 deployment. It may be an issue with my understanding or not.I currently have a rule created as below, IP's have been changed.:Source Destination Ports ...
Hi,I upgraded FMCv from 6.6.5 to 7.2.4. A few days later, my active-standby HA pair of FTD 6.6.5 devices failed over during resilience testing. FMC gave a health monitor alert about interface changes detected. In the Interface config screen for the H...
greetings!! i was wondering if anyone has come across the issue of configuring DUO SSO remote access VPN (saml), where the DAP DfftAccessPolicy Action: terminate is responsible for terminating the VPN. When the action is permit, the vpn is successful...
Hi,I have two FTD's managed by FMC. at times its cpu hits 100 % . I figured out that when there is heavy traffic passing through two interfaces the snort process chokes one cpu.there is 230Mbps data throughput between two zones/interfaces on FTD when...
