Hi Community! I have a Firepower 1000 series. We have two public IP pools asigned by our ISP (2x /29). There is only one cable connected directly between the ISP router and our FirePower outside interface. Using one IP from one of the pools (firs...
Forum Posts
Resolved! Cisco ASA and Firepower - GeoFiltering
Hello Experts, I had Russia blocked as GeoFilter in Firepower and policy is deployed successfully. When I run Packet-tracer command, it showed allow. Is it normal ? Or my Firepower policy is not in place? Thanks,
Hi All,We had cyber attach due to which my vASA and backup conf of ASA lost for immediate requirement vASA is configured again however with no rules it it and all traffic are allowed.What will be the best way to conf the vASA on the base of logging. ...
Hi Folks,In our data center vulnerability scanning from outside we are getting these two infections. we have two FWSM one at the internet gateway and the other internal FWSM. Now the management wants me to trace the source of this infection and stop ...
When using the FTD migration tool we have inside and outside in ASA, when i create the zones in the tool it does populate the source zone as INSIDE, however destination zone is ANY.Why doesn't the tool assign the rules to the correct OUTSIDE zone?I h...
i aded ssh 0.0.0.0 0.0.0.0 Outside but still cannot connect ssh to my outside interfae do I also require any access-list? do we have any example i can look at?
Hello, i have isakmp working tunnels and when i convert them to ikev2. They are not coming up. As soon as i config new ikev2 tunnel profile to tunnel interface ospf neighborship went down and having below errors. There is no issue with isakmp tunnels...
Hi,We discovered that our remote backups stopped working after upgrading FMC from 6.6.4 to 7.0.1.We are using Windows server 2016 and the FMC is configured to use SMB for backups.After running pigtail on the FMC, I saw the following error when starti...
Resolved! FTD vulnerability scanning?
Do Cisco FTDs do vulnerability scan on the the devices on the network?
I'm not quite following what needs to be one with API to configure SNMP and DHCP relay on an FTD that we're just installing. I tracked down the following from https://community.cisco.com/t5/network-security/cisco-ftd-7-0-manage-by-fdm-dhcp-relay/m-p/...
How can I obtain an Anyconnect VPN Client that works on Windows 8 x64? v2.4.1021 was shipped with an ASA bought last year and it does not connect. No service contract was purchased. Without this update the device is useless for the purposes it was pu...
Under
I have installed a new network module (FPR2K-NM-8X10G) on our FTD (Pri/active) 2140.After installing the network, started the device again and got warning on it in FMC under Devices.Warning was I have to edit it and save it. I did edited and saved it...
Resolved! How to setup DMZ switch and ASA
Hi all,I am attempting to setup a DMZ client, switch and ASA. Currently the DMZ switch can ping the DMZ gateway of 172.16.1.1 but the client cannot. What am I missing?DMZ#show runBuilding configuration...Current configuration : 3696 bytes!! Last conf...
