Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...
Forum Posts
Hello Everyone,at this morning i have get the new Version 7.0.5-72 from our IT Salesman,i have Uploaded the file to the FPR and would like to install it.When i start the Update they told me there are some errors in my Configuration.Yes there is a pe...
Is there a way to apply the same change to multiple rules within an access control policy?Recently I had to enable logging on every single rule withing an access control policy and now I have to enable the IPS policy to every single rule. Is there a ...
Hello all,Recently (finally) got around to configuring and setting up a syslog server in our environment. I have all of our Cisco devices sending syslogs to syslog ingestion tool. Everything appears to be working great but I am seeing a significant a...
Hi,Outbound traffic to the internet on our network are being blocked. FMC tags valid URLs into Spam or Malicious Sites or Exploits.Im using FMC 7.0.1 (build 84) and FTD Version 7.0.1. Any idea? Thanks.Sample logs
Hey guys can you review the below and tell me what I am doing wrong here??? I am trying to do two Static Auto Nat statements for each traffic flow so that the NAT would also work with the backup zone if primary isp fails. I keep getting this over lap...
Hi, looking for a little help.I can't seem to login into ASDM anymore. I was able to login into CLI and run the following:conf tusername cisco password cisco123 priv 15aaa authentication http console LOCAL Which did change the login for CLI but still...
So I purchased several firepower ASA strong encryption licenses, and they show up in the licensing dashboard in the virtual account, under the licenses tab. How do I get these licenses applied to the FP1010 devices running asa code?
Resolved! ASA IP reservation based on VPN username
I saw a post about the ASA now being able to perform IP reservations based on MAC addresses but couldn't find anything about doing the same thing based on the username connecting to VPN. Is this possible?
Having issues with rule conflicts and traffic behavior, so I created a new AC policy with default posture to deny all traffic, but when you examine the new policy there is no default deny rule. Where is this rule seen so I can confirm its existence?O...
Resolved! Cisco FTD - "No Rules Active" but active
Hello, I'm still getting used to the FTD and have been for the better part of this year. Unfortunately, I have suffered so many things that TAC could not help with because they're in all probability bugs (some of which, very clearly bugs.) I already ...
Hello Everyone,We are trying to get a SQL cluster node to communicate on UDP 3343 from a host attached to our "DMZ" interface, to a host on our Inside interface. Packet tracer is saying the packet is dropped due to an ACL, but ive cleaned up our ACLs...
Hi Guys,I am trying to allow internet with NAT to one computer in our network but I guess i miss something.CISCO ASA FW - p1/WAN (can ping 8.8.8.8)CISCO ASA FW - p2/10.5.100.254SW - p25 (defined as access port VLAN 100 - 10.5.100.1)to the same sw, ma...
Is there a Letter of Volatility (LOV) for the 3524 family of switches?
- FYI : https://www.cisco.com/c/en/us/support/docs/field-notices/725/fn72501.html >...For affected versions of Firepower software, automatic software downloads, Snort Rule Updates (SRUs), Vulnerability Database (VDB) updates...
Hi,i would like to ask about ikev2 proposal encryption. If we are using we encryption in IKEv2 proposal but i will use strong encryption on IPSec, can IKE proposal compromise ? Phase 1 will compromise ?If Ike proposal is compromise, what kind of data...
