Hi,I need help please. I'm looking to create a port forwarding on my firewall. I am trying to come from the outside through UDP port to the inside to my network.Can someone guide me please how to create the Nat rule. Thanks Ammar
Forum Posts
Resolved! TLS Version 1.1 Protocol Deprecated
I am using Cisco Firepower 2110 with firmware 7.0.5-72 and the SSL 1.1 is in use.How can I disable SSL 1.1 ?DescriptionThe remote service accepts connections encrypted using TLS 1.1. TLS 1.1 lacks support for current and recommended cipher suites. Ci...
Hello Community, Whilst preparing for a 4110 FTD upgrade via FMC, the readiness check fails.The log files should be located here:Status Log:Readiness Check To x.x.x.x Failure Logs@ /ngfw/var/log/sf/Cisco_FTD_SSP_Patch-6.2.3.18/upgrade_readiness The n...
I am using FTD 1120 using Firepower Device Manager, please advise on the easiet method to set these settingsI need to set the followinga) SSH timeoutb) Console timeoutc) SNMP settingsd) Login Banner
Pretty sure this isn't possible, but worth an ask.I'd like to policy route some of our traffic based on application awareness. This is all being done by a Sophos XG and then routed via an alternate link to an ASA which is one of our internet /AnyConn...
I have a bunch of S2S VPN's terminating to an edge ASA firewall.I'd like to add a new ASA/FTD appliance inside our network for the VPN's to terminate to. We have dual WAN circuits so if a specific circuit drops currently we lose the VPN connections u...
Hello - I have FTD 1010 managed locally. I would like to connect it to CDO, the base license is already active for the FTD (attached). I'm not sure if I need any other license to manage the device from a cloud (CDO).
Hi Everyone, im having an issue where i am unable to download the pkg file for re-imaging my ASA to the unit. I am trying to flash a clean, fresh copy of 6.4.0 FTD firmware to this unit as a POC for upgrading a HA cluster of these units. Running the ...
Resolved! FTD management with both FMC and CDO
I have an on-prem FMC that manages a handful of FTD devices. All of these devices use private IPs and are not NATed or exposed to the Internet in any way. The problem is some of the FTD devices are reachable only via IPSec VPN which sometimes gives...
Resolved! Cisco ISE
What is SGT in Cisco-ISE ?
Resolved! HA or clustering Firepower 4115
Hello, after deploying a couple of firepower of 4100 family, we configured the FXOS in cluster, apparently there is not differentiation on between cluster and HA (unless I missed something). So far so good, the problems comes when from FMC I want to ...
Resolved! NGFW 1140 configuration question
We have migrated from a AS 5516 to a NGFW 1140. Everything seems to be working great so far. What I was wondering is we have site-to-site tunnels configured and it appears the normal internet traffic is also trying to go through the tunnel. How can w...
Hello AllI am working on a LAB/Pilot to Create a Ipsec tunnel to vendor over bgp using the Tunnel1 connection. I have create the tunnel and have the IPsec up and working. Examples are connection to Cloud connection but I want to hid my internal IP ...
Hello,Where can I find out how specifically the Cisco Secure Firewall/ Firepower engine detects specific applications in network traffic.I understand they are applications which are detected in different ways, one way for example ASCII patterns in th...
Hello,I have been stuck for several days on an ISE authentication problem with SAML.Microsoft authentication works fine then the ISE redirects to google.com and it fails to change the authorization profile. As he does not have Internet access with th...
