With using only FDM to manage a NGFW FTD device, has anyone been able to configure AS_PATH Prepending via the neighbor route-map policy?I can configure this in the LINA Config tool (config t under system support diagnostic-cli), but as many are aware...
Forum Posts
When creating a third party SSL cert for VPN using FMC 7x do you use the Intermediate or Root certificate for the CA?Thanks, David
Security has scanned us and found openSSH vulnerabilities. I need to select the best version of NX-OS to upgrade severalnexus 7700. Security did not offer up a CVE, nessus says, " openSSH running on the remote host is prior to 7.8. It is therefore a...
Hi All, Can you please, let me know if Bluecoat packet shaper 3500 supports tacacs+ Cisco ISE ver3.2. Bluecoat Shaper 3500 Series: Software Version 9.2 13p7.
Good Day All,I found a vulnerability on my 4321 router regarding this:"The remote SSH server is vulnerable to a man-in-the-middle prefix truncation weakness known as Terrapin. This can allow a remote, man-in-the-middle attacker to bypass integrity ch...
Hi Guys Can you please share the CLI/GUI command to check snort version on Firepower device 7000/8000 series. Also the recent list of commands which is used for Cisco Firepower 7000/8000 series Current version of FMC is 6.4.0.13. Thanks in advance ...
Hello everybody,because the new vulnerabilty I have to upgrade a ASA5516-X with FTD from 7.0.5 to 7.0.6.2.The FMCv is running rel. 7.0.6. The upgrade a ASA5516-X with FTD from 7.0.5 to 7.0.6 failedeven if the readiness check was successful.I repeated...
I had a FTD Virtual register to a FMC which I need to remove and manage as a standalone device.I delete the device from the FMC.I setup the FTD to be used as standalone as per CLI command : "configure manager local"the GUI is working and I can browse...
Hi,Is the FMC managed FTD supposed to be reaching out to CISCO for security Intelligence? I have an FTD reaching out to 63.97.201.67.Is that normal. I thought the FMC reaches out to import and deploy to the FTDs.
Good Afternoon,I have an ASA 5525-X on 9.12.x. We have been working with TAC to try and migrate our ASA config to a Firepower 2120 running FTD code. We also have CDO. We are hoping to use CDO's ASA to FTD conversion tool, but so far as been wildly...
Greetings! In this week's What's new in CDO it was announced that the new Cisco Defense Orchestrator (CDO) public API has moved from beta to general availability! You can find the API docs here. There is the REST API, a postman collection, and a pyth...
FS-VWM-10-SW-K9 goes EOS on 4/30/25 can you migrate to SF-FMC-VMW-10-K9 through your ECMU SMARTnet contract? If so how do you go about doing so?
A client asks me for a list which URL's are accessed. It has access to more than 40 URLs. I don't want to manually write them one by one from the URL Object. Network objects can be seen very easy in the CLI with the (show object-group id xxx) command...
Resolved! FPR1010 Factory Reset
Is there a way to do a factory reset on this FPR1010? The original problem I have is I can ping both 192.168.1.1 and .45.45 but I'm not able to reach the page via browser. "This site can not be reached" I'm able to communicate via USB console though...
Hi everyone,I have a client issue where they claim that Cisco AnyConnect falsely reports that Certificate has expired. When I connect with my own AnyConnect client version 4.10.05111, I do not get this false/positive error. Screenshot attached. Inter...
