Hi Dears, I’ve encountered an issue with FTD managed via Firepower Management Center (FMC), running the recommended version 7.4.2 Issue Details: After performing an Nmap scan on the outside interface, we discovered that TCP ports 21, 2000, and 5060 ...
Forum Posts
Hello,my boss wants me to generate Reports for our FTDs, managed by the FMC. But we need to split the reports by Device, to split the data geographically into us and our clients. I cant find anything on activating a filter or something simular. Maybe...
Hey everyone,I’ve been working with both ASA and FTD, and I noticed a key difference in how they handle port-channel interfaces in routed mode. On ASA, I can create a port-channel and assign it to a BVI without any issues. But when I try the same in ...
Why we use no route-lookup, route-lookup and proxy-arp, no proxy-arp At the end of the NAT statement command in cisco ASA firewall.
Resolved! Allowing Traffic through ASA without NAT
Hi!I have around 20 local networks. Im posting a basic topology with only 4 networks. Each server represents a network.Everything internally is working fine. Nothing will be going out to the internet. This is all within house. Now there is aclient th...
Resolved! FTD CLI SSH Debugging
Hi, I am trying to get some debugging done on my FTD via SSH, but it does not seem to work. Does FTD support debugging if done via SSH and issued under#system support diagnostic-cli || or do you have to use a console cable to see debug output? Us...
Resolved! Cisco Ise using default policy
HelloI have implemented some policies on Cisco ISE but it is using default policies instead of the ones i configured.Can i please get help on it.I have attached the the image below
Hi team,We are currently running ThousandEyes POV.Since our FTD is not allowing traceroute through it, the path visualisation part is not showing the correct path. We have 2 BGP peers to SaaS with ECMP, but FTD is not allowing traceroute it looks lik...
Hello team, I have one smaller issue (at least I think that) in IPSec tunnel between ASA 5585 (9.12(4)67) and Firepower 2110 (do not know version, but it is 7.0.0+) So tunnel is up, and first phase is ok. But we get constant complains about traffic ...
Hi,We have 2 DC's, each with their own Firepower 1150 running ASA software v9.20(3)7.In DC1 we see interface Internal Data 0/0 (overrun) errors rising. After reading up on several posts here, on reddit and other places, i understand that interface is...
Hi All,I need to remove our Umbrella DNS policy from the Inspection part of a Acces Control Policy.Setting the Umbrella policy to "None", the deployment fails.I'm only able to apply a different policy, but not remove it entirely.FMC >> vpn-addr-assig...
Hi Guys I am running into some issues activating a VPN on my cisco asa 5508, when trying to add the below command: "crypto ikev2 enable outside" I get the following errors: ERROR: Failed to open "udp/localized/2/500"ERROR: Error opening IKE port 500 ...
Hello Cisco Community, We are faced with the challenge of transferring the access rule list from an existing Barracuda firewall to Cisco FMC. On the Cisco side, two FTDs are connected to the FMC. When looking into the Barracuda Firewall, I noticed th...
Resolved! Dmz with dual firewall Implementation
Hi Support,I want to implement the DMZ with dual firewalls (FW1 & FW2). FW1 is connected to Internet and FW2 is connected to LAN. Between the both firewall we have the dmz subnet 10.10.10.0/24Web Proxy (10.10.10.3), FTP(10.10.10.4) ans mail server (1...
I am trying to configure SNMPv3 polling for an HA pair of Cisco FTD 3105's running 7.4.2.1 (Build 30) but that are managed by a Cisco FMC also running 7.4.2.1 (Build 30). I understand how to go to Devices\Device Management\Platform Settings\SNMP and ...
