Hi We have recently launched cisco firepower 1150 (Version 7.3.0) for one of our sites and sometimes strange problems happen for it. One of it’s interface doesn’t work properly. For example STS VPN between cisco ASA and firepower disconnects and remo...
Forum Posts
Do someone know if it's possible to activate a CA on FTD (7.0.0.1+) to generate Identity User Certs (OTPs) like Cisco ASA used to done?...
Good day, Is is possible to configure the FTD 1120 version 6.7 with dual ISP links for users with the anyconnect client to connect to the FTD using either ISP. Looking at the configurations, you can only configure one outside interface for the globa...
Hi Guys,I have FTD 6.6.1 with FDM, I configured Remote Access VPN, and everythink working good except for management FTD.I would like to be able to manage this device after VPN connection. I configured one of data interfaces as a MGMT:ftd1l# show nam...
Dears, I have an FTD at a remote site and managed using FDM.A site to site vpn is configured between FTD at site and ASA at HO.Tunnel is working fine and I can access and reach all IPs in remote site.Concern here is I am unable to access FDM/FTD’s ...
Configuration does not sync with standby box and it shows Failed. I can able to ping state and failover link from active to standby and standby to active.show failover stateState Last Failure Reason Date/TimeThis host - PrimaryActive NoneOther host -...
FMANFP-6-IPACCESSLOGP log message displays IP addresses in reverse order. The Cisco bug ID CSCvn40315 identifies this bug.The explanation references an outgoing network package that may have been affected by this bug, indicating that an IP address o...
I have what I thought was going to be relatively easy task. Our syslog server logs more than 20,000 login attempts in 48 hours to log in using a variety of root, admin, administrator and random email accounts. While all have been prevented it may onl...
I'm attempting to migrate a merged configuration from two ASA's that just contains the objects, object-groups, ACP and two interfaces using the latest FMT 4.0-7965 windows tool. In my lab (ESXi 7.0) I built an FMCv running the same version as product...
Resolved! downgrade to Snort v2 on FTD HA pair
We have several FTD HA pairs. One set has a single FTD running Snort 3. And one set has both FTDs running Snort 3. We've decided to downgrade all FTDs to Snort 2. Is it possible/advisable to downgrade a single FTD to Snort 2 while leaving the other m...
My problem is traffic broadcast from 2 Microsoft Windows PC one connected to port 1/2 and another connected to port 1/4The Windows application communicates using these IPs 224.0.0.22 IGMPv3 and 225.0.3.15:5602 UDP and these packets do not pass betwe...
Resolved! FTD Virtual Router
Hiif I create a new user defined Virtual Router on FTD 2100, can I still use the exsisting ACP for the interfaces in the new Virtual Router ?, so ACP for both gloabal virtual Router and user defined Virtual Router, and also create security groups and...
Resolved! ASA 5500x version query
Hicurrently on 9.8Hello another ASA 5500x question, so no interim upgrade required, but target version because it as the x in brackets does this mean I can upgrade to any version in the major version.?? and also whats the best/safest practice for thi...
Hi everyone, I have my cisco ASA 5516 with version 9.7 (1) 4. I am trying to configure the ASA for BGP Authentication, but when I try to enter the TCP map range 19, It says that this range is not valid as shown in the attachment of this post. How can...
Hello.GIVEN:Packet1 tries to reach server2 (72.16.139.5) that lives remotely through a L2L tunnel. The packet travels 4 hops through the LAN to an ASA-5525.ASA-5525# sh routeGateway of last resort is 1.1.1.1 to network 0.0.0.0S* 0.0.0.0 0.0.0.0 [1/0]...
