Network Security

FTD 3130 / ECMP

Hello everybody,I need send traffic (default route) to 20 S2S VPN. I wanted to use ECMP to achieve this. However, there is this limitation of max 8 routes... which is unfortunate.Is there any other way to achieve this? using ECMP or not.Thanks.Dardan

Is this bug cosmetic?

Does the descripting of this bug mean that it is pure cosmetic? I should just ignore SNORT utilization? https://bst.cisco.com/bugsearch/bug/CSCwe21037 How do I find the top.log file? Anyone know of fixed version?

Adding Additional Interfaces to Cisco ASAv

Need to add some additional interfaces to a pair of ASAv running on ESX. (Deleted the original ones when it was initially built)After adding powering down the ASAv and then adding the interfaces, the ASA's boot but I do not get any network access.Th...

Resolved! Can FMC Manage an FTD behind another managed FTD

I have an FMC within my core that manages an FTD at what I'll call a mid-point location. The mid-point location FTD connects to another FTD at the End-point location. I am able to ping from the End-point location to the FMC and visa-versa but I am no...

FTD HA - Unable to Deploy After Failover Link Broke

Hi Everyone,We are in the process of deploying HA for 2 FTDs in our environment to go into production. Currently in the test phase, however, after deploying the HA, which worked. A week later, we lost the failover link. This caused the inability to d...

Unexplained reboots for Firepower 2100

After a long period of pretty stable operation, we have been experiencing semi-random outages for our WAN and after a brief suspicion of the external network connection are fairly certain our Firepower is actually the cause of the outage and just det...

FTP and Application Inspection for RPC

I have to allow RPC communication between windows clients and domain controller.How can I define rules in FTD so that just by allowing MS-RPC (tcp/135) the authentication between client and domain controller works. That is I would like to prevent all...

Resolved! FMC 7.0.5 to 7.2.4 upgrade failure

Hello,I`am trying to upgrade FMC Virtual (KVM)to suggested by Cisco version 7.2.4 from 7.0.5. (Cisco_Secure_FW_Mgmt_Center_Upgrade-7.2.4-169.sh.REL.tar)Downloaded upgrade file, checked RAM (32 Gb) and Disk space (attached print screen) verified insta...

Resolved! Deploying FTDv HA Pair on Vmware

Hello Community, I would like to find out if it is possible to vmotion a A/S pair of FTDvs between two ESXs servers. Thanks

Resolved! Part Numbers

I have another Firepower project on the horizon. I know what I need but I don't have part numbers. What is the best way to get part numbers so I can send out for quote?Ex: Part number for Cisco ISE-PIC VM

Anyconnect loses connectivity to outlook and web browsing randomly

Hi All,Im having an issue with cisco Anyconnect that is increasingly causing an issue. I have a Cisco Firepower managed by FDM with an identity source of our on prem AD server. the identity policy is set to produce a captive portal when the browser o...

Resolved! Minor upgrade of FMC and FTD?

See documentation about going from 6 to 7 version but course nothing from let's say 7.0.2 to .4,Has anyone upgraded these before? Any potential issues to consider?

Resolved! How to add numerous entries in network group object in FMC?

Hello EveryoneI have FMC 6.6.5 version, and I need to add about 300 entries(Host and Network) in network group object. How to automatize adding proccess? or can I add multiple entries at a time?

Access-list (ACL) configuration for ISE PSN

I am following the URL below for ISE Hardening, but I am having trouble finding the settings to meet the following requirements.https://community.cisco.com/t5/security-knowledge-base/ise-security-best-practices-hardening/ta-p/3640651<Requirement>"Con...

Resolved! Firepower 1120 FDM Problem with GUI + SSH

Hello I have very interesting problem. After some changes I cann't login into my FDM FP 1120 on 192.168.1.1. The FP configured as Router and enabled DHCP for clients - for all clients FP 1120 as Gateway 192.168.1.1. For now I can login only via Conso...

Network Security

Forum Posts

FTD 3130 / ECMP

Is this bug cosmetic?

Adding Additional Interfaces to Cisco ASAv

Resolved! Can FMC Manage an FTD behind another managed FTD

FTD HA - Unable to Deploy After Failover Link Broke

Unexplained reboots for Firepower 2100

FTP and Application Inspection for RPC

Resolved! FMC 7.0.5 to 7.2.4 upgrade failure

Resolved! Deploying FTDv HA Pair on Vmware

Resolved! Part Numbers

Anyconnect loses connectivity to outlook and web browsing randomly

Resolved! Minor upgrade of FMC and FTD?

Resolved! How to add numerous entries in network group object in FMC?

Access-list (ACL) configuration for ISE PSN

Resolved! Firepower 1120 FDM Problem with GUI + SSH

Reuse Object Group in a single ACL line

CSCwm49782 - enhance sma 2nd cruz heartbeat logging

Announcing the release of Firewall Migration Tool Version 7.7.10

CSCvx25052 - DOC: FTD Syslog messages 43000x missing from FMC

FMC API to get real time VPN/S2S tunnel and CPU/Memory perf metrics

Cisco ASA 5525 Migration to FPR-1140

Options to NAT to multiple internal servers from internet on FTD?

ACME on ASA

Snort3 rate filter

PBR with AnyConnect