Hi We got the below info from Qualys for security vulnerability issue in device Nexus9300. Look like cipher need updated and ssh rsa key length needs to be changed. I reviewed the below link, but cannot find some configuration to change cipher or ssh...
Forum Posts
Hi All, For a Firepower 4140 HA pair, is there any way we can get the FXOS management IP address if we have access to the virtualize FTD CLI or FTD GUI through the FMC? I asked the support team for it, but I was told thats not possible. If not, woul...
Can someone confirm my understanding of HA in a multi-instance environment on the 3100 platform.Am i correct in the thinking that an Instance isn't shared across a HA group?Going by the HA setup GUI it would appear you need two instance one on each c...
Hi,pinging a VRF interface is not possible on FTD. Is this a feature?Pinging from VRF to somewhere works, but if you try to ping a VRF from outside, it's dropped by "implicit rule"? Phase: 5 Type: ACCESS-LIST Subtype: Result: DROP Elapsed time: 122 n...
Resolved! Cisco FTDv -- How configure NTP via CLI
Hi Team: I am lab with FMC & FTD, I have FTDv installed in Esxi and chosed to use FMC, and also configured manager with registration keybut when I tried to add the FTD on FMC and failed, recommand error could be the time not syching with the same NTP...
HiWe are using Cisco switch Nexus 3548X and wondering if it's possible to use passwor
Anyone else experiencing a very long boot time for first time install of a 3110?I mean you could go on holiday and it wouldn't be done by the time you came back.I got to the ftd config wizard to set the IP. Then it told me mid way through it was goin...
is there a way to migrate existing SNORT2 rules to for example im looking at SID 1:62681,SID 1:62682,SID 1:62683,SID 1:62684 they appear on SNORT2 rule but not on SNORT3 so is there a way to migrate this rules? this are on the category malware-other...
Hello everybody,today I updated the FMC1600 from 7.2.5 to 7.2.5.1 and thereafter I triedto upgrade a HA of two Firepower 4115 from 7.2.1 to 7.2.5 but theReadiness Check failed becasue one of the nodes has to few disk spacesupposedly (see screen dumps...
Hi, Is there a way to extract a list of all devices and there serial numbers from FMC? We are using FireSight 5.4 version of software. Thanks, Dan
Resolved! Routing issue with dst nat - ASA
Hello! and I hope someone can help me.As part of delivering a service to our customers I had the need to nat their destination (as well as our source). However, two different customers wanted me to nat their end and later noticed they use a similar I...
HiThis is regarding Cisco ASA 5525. I have 2 firewalls with IOS version 9.4(4)22 & 9.8(4)20 In these firewalls wanted to check, if it can support any of the below.diffie-hellman-group-exchange-sha256diffie-hellman-group16-sha512diffie-hellman-group1...
Hello,We recently purchased and installed a Firepower 1010 in a remote office intending to have VPN with the headquarters. At that remote office we have two vDSL lines which a providers router for each line. Each router has a cable connecting to an e...
I was looking at deploying a 3120 in multi instance mode with 4 instances but I would want each instance in a different FMC domain for different teams to manage independently. Is this possible? The only examples of multi instance I've seen put the in...
Hi All . What is the alarm clear after Smart License out-of-compliance or authorization expire or other error message from smart licensing ? %ASA-3-444303: %SMART_LIC-3-OUT_OF_COMPLIANCE %ASA-5-444305: %SMART_LIC-5-AUTHORIZATION_EXPIRED: Authorizat...
