We would like to request for an advice for the below vulnerability on Cisco Anyconnect : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ac-csc-privesc-wx4U4Kw Our current version info as below: Cisco Anyconnect...
Forum Posts
Hello together, we are getting the following error messages in our FMC -> Monitoring -> Syslog. Do anyone have a solution for that? - We running FMC Version 7.2.2 Thank you! Kind regards Nils
On a FMC/FTD environment, any ideas how to intercept and redirect NTP and/or DNS traffic from specific clients? There are a few appliances with hardcoded NTP/DNS entries, which I would totally prefer to use my internal systems to provide them access ...
Resolved! [FTD] Active/Active Cluster Backup
Hello together, we running a Firepower 3130 Active/Active Cluster in our environment - actually we facing the issue that we cant backup that active/active cluster as also described in the Cisco guide. Is there a way to perform the Backup through FMC,...
Hi, I am trying to bring up a cluster interface for which I have used a Layer 2 switch and Cisco ASA. I have identical ports connected at both the ASAs which terminate in the switch. I am using LACP mode active at both switch and ASA but the port-ch...
Resolved! Packet Tracer ICMP Type and Code
hi all,was doing some troubleshooting for allowing ICMP on one of our ASA (8.2) and got stuck with ICMP type and code.i've searched that ICMP type 11 is used by windows (link below). but would like to know what are the other ICMP types especially use...
Hello,We have a firewall cluster made up of Firepower hardware appliances, each simultaneously running a piece of ASA firmware and a piece of FxOS firmware. This deployment mode is Firepower "Appliance mode".The cluster can communicate directly with ...
Resolved! FMC External AD Authentication over TLS
Hello,I am using the following guide to set up AD external authentication over TLS and getting the following error: Opening connection to LDAP server - XXXXXXXXXX:389 - ldapCurrent TLS Require Cert: 4Current TLS CACERTFILE: /var/tmp/HsmvFZQrBM/temp0....
HelloI have a 1120 FTD now that reports "high unmaged disk space". This is a known bug through 7.x.x and restart of syslog-ng usually has fixed the problem. I read that 7.2.2 has this: https://www.cisco.com/c/en/us/support/docs/field-notices/725/fn72...
Afternoon,Is anyone aware of how https and console idle timeouts can be configured via FDM.I'm aware it may have to be flexconfig however commands beginning with http are showing as prohibited. Thanks.
Resolved! FTD External Authentication
I cannot find a way to get external authentication methods to work for the management interface of a Firepower Threat Defense system. In an FMC Platform Settings policy for device type "Firepower" there is an option to enable external authentication...
Hello AllI have the ASA 5525X with the image 9.8(4) and want to upgrade to 9.14.4 image.is it possibale without interim image or should i follow specific OS path till I reach my target OSmy second quesion is the 9.14.4 a good image?Thanks!
Hello, We are currently in the process of building the network infrastructure for one of our clients, and the IT management is considering deploying FTDv (Firepower Threat Defense virtual) in a public cloud, specifically on an ESXi server. I have a ...
I wanted to see if anyone has any suggestions or has come across issues with redirecting multicast traffic through the firepower module. I followed the standard process to redirecting traffic to the module by creating an acl then a class map and then...
Hello.I want to do a test in ASA packet tracer for traffic that is routed to a L2L VPN configured on the firewall, when i do the packet-tracer the traffic is being dropped on Phase 6 which is type: VPN subtype: encrypt. my guess is because the fi...
