Network Security

Firepower Intrusion policy update

Lets say, in august firepower have 100000 intrusion policies. Then i use firepower recommendation in august and it applied 9000 out of 100000 policies. Now in september, firepower has an update from 100000 intrusion policies to 105000 intrusion polic...

Where do i find my private key for my Certikate and export it

Hi Community,On an Asa 5505 i want to add a Identity Certifikate. I have a new Certificate File (.crt) But i need a Passphrase. What passphrase please?So this do not works.Next Idea: Converting the Certifikat. So i need my "private key" stored somewh...

Base Compliance Error in FTD

I have ASA 5516-x series device running with FTD code version 6.2.3 I was trying deploy the ACL policy changes via FMC but unfortunately I am getting the following error : Log All Connections : This rule requires a Base Compliance , but at least one ...

is there a tool to automatically input policy to Firepower?

Hi, Im new to Firepower. I have more than 100 servers that i want to use known key decryption for. Is there a tool that automatically input the policies or i have to manually input the policies?

Getting packet drop in ASP-drop

I am seeing asp packet drop on FTD in my captured logs for one of the website which user is trying to access on https. It is a intermittent issue where couple of time website is not opening or opening slow.1: 23:07:25.774770 802.1Q vlan#2926 P0 14X.X...

Forcefully Sync configure in FTD HA

I have an FTD HA cluster which is added in Algosec for Optimization... recently i noticed that the object count and service count statistics are different for different members as shown in Algosec Config.Is there a way to verify this from Firewalls ?...

Cisco FTD 1010 how to use FDM with HTTP Response Page for Blocked URLs

Seeking insight for activating the generic HTTP Response Page (Access Denied) for the Cisco FTD 1010 utilizing Firepower Device Manager v7.1.0. For ACL Policies that are Blocked utilizing URL Categories, within the policy editor, I do not see the op...

Download CRL Job failed

Azure FMC version 7.1, Firepower 2110 running FTD version 7.0.1, now only getting the below after a couple of initial successes for the the weekly FMC task.Scheduled Task: Download CRLStatus: Job failedFailure: Unable to download/move CRL file:The 's...

Firepower Decrypt Known key for Proxy

So i have a proxy and FTD. Every connection to the internet goes to proxy, and use proxy certificate. The problems are, proxy only decrypt/ resign HTTPS traffics. So i want the firepower to inspect other encrypted traffics such as FTPS and other traf...

Port Forward settings for NAT type A or B - Nintendo Switch

Hi everyone, A customer approached us with a unique issue, He wants to get NAT type A or B to have a better connection to Nintendo's online services for Smash Brothers Ultimate (for school esports) Typically on a home router, you would simply go the ...

Resolved! WAN redundancy S2S tunnels FMC FTD

I am migrating from ASA to FTD where the ASA has Primary WAN (Outside) interface and Backup WAN (Backup interface) The ASA has S2S tunnels and also backup interface ACE's Mirrored from the outside primary interface. This is in place on the ASA so tha...

READ ONLY ACCESS ON ASA 5525

Hello Sir,Please I am having issue with a user who I want to have read only access to the firewall. Below is the command I use:username DKamenuveve password xxxxxxxxxxxxxxxxxxx priv 5The user is still able to execute configuration commands and save.T...

FTP to ASA not working

I am trying to re-mage an SFR module on an ASA but when I do a system install via ftp, I get a permission denied error. I have ruled out the FTP server as the issue as I am able to FTP to a totally different set of firewalls so that should rule out t...

SFR requested to drop TCP packet - (leading to website denied)

Hi everybody.I manage an ASA5525-X with ASA Firepower. I have to ay that this is the first time I had to manage an ASA with firepower included. I have to allow a website that's being blocked (legitimate website) but I don't know where is the right pl...

Resolved! Cisco Anyconnect SAML- authentication failed due to navigation timeout

Cisco AnyConnect not able to login via SAML integration. The login is successful when using the browser through the outside interface domain but while using client VPN, there is timeout after blank screen. How to fix this?

Network Security

Forum Posts

Firepower Intrusion policy update

Where do i find my private key for my Certikate and export it

Base Compliance Error in FTD

is there a tool to automatically input policy to Firepower?

Getting packet drop in ASP-drop

Forcefully Sync configure in FTD HA

Cisco FTD 1010 how to use FDM with HTTP Response Page for Blocked URLs

Download CRL Job failed

Firepower Decrypt Known key for Proxy

Port Forward settings for NAT type A or B - Nintendo Switch

Resolved! WAN redundancy S2S tunnels FMC FTD

READ ONLY ACCESS ON ASA 5525

FTP to ASA not working

SFR requested to drop TCP packet - (leading to website denied)

Resolved! Cisco Anyconnect SAML- authentication failed due to navigation timeout

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Cisco Research Study! Take a survey for a chance to win $50 gift card

What's the ideal way to implement app-based 2FA for admin login for AS

Snort and alert modes.

Firepower 2110 platform to application in HA with minimum downtime.

FMC / FTD 7.4 / 7.3 users ,what other options do you also use ?

Cisco Firepower 1010e unable connect to internet

Redeploy FDM HA-FTD into FMC

Moving FTD

Packet Tracer 8.2.2.0400 compatability issues???

Found CVE-2018-0101 on ASA 9.12.4.67 which is released 2024