Hi, FMC 4500 recently upgraded to 7.0.5. When I navigate to System>Updates I face some slowness in the webpage response. I believe (I could be wrong) this is due to the fact that we have multiple versions of VDB (~31 updates) on the FMC and I would l...
Forum Posts
Hello everyone,Maybe this is a strange question:I have a firepower 7115 with inline pair in and out between two non Cisco firewalls which are running carp interfaces.I have checked the connection events on the FMC but can’t see the multicast carp tra...
Hello,I want to prefilter CAPWAP tunnel traffic through my FTD using prefilter policy, but unlike GRE that have predefined option, for CAPWAP i have to define it manually. Anyone ever try to do that? if so what is the correct way to do this?Should i ...
Customer ISP not providing enough bandwidth and was told a secondary WAN connection could be added and aggregated with the original circuit. This firewall is a Cisco 1010 FTD used with FMC and has anyconnect VPN established. Is this even possible wit...
I only find the API how to remove a whole object-group but I just need to delete a member from a specific network object-group. Thanks.
Hello:I have two ASA 5515-X running 9.8(4)35, one of them support ECDHE-xxx cipher, but the other one does not show ECDHE-XXX ciphers, when I ran show ssl cipher highAny suggestions?James
We recently installed new FTD's and have the option enabled under the Advanced Settings of our ACP for "TLS Server Identity Discovery". Yesterday, we had an external user who was having issues accessing our main website. FMC logs showed allows and ...
We were having problems tonight and suspected problems with the active Firepower, but it ended up being an application issue. In the process, though, I ran across a red circle with an "!" for "Configuration Memory Allocation - Test Failed" for both 4...
Hi everyone,I'm trying to whitelist Facebook from Social Networking by creating the above rule to allow it, but it didn't work, although the ACL has been hit, the webpage can't load. I'm thinking to use a wildcard mask, like "*facebook.com" but seems...
Hi., I have a problem. my ASA firewall doesn't send traffic to syslog server for UDP 514. however, it seems it works on other ports because I can see the checkpoint firewall showing the flow as it is the next hope.we have two syslog server. it doesn'...
Hello, PreviewI have some issues with passive user identity between FMC and ISE. I have configured a realm and I use ISE as identity source with PXGrid. Both the realm and PXGrid is working and if I go to Analysis->Users, I can see the users there. H...
Hi, I want to deploy ASA with HA Active/Passive in FirePower 4112. When deploy the ASA instance in FirePower, do I need to select 'Cluster' as device mode? Or just select standalone and then configure the HA in the ASA CLI? Thanks Arie
To whom who may help me :) Problem Description: Mapping IP addresses to users are not happening. Scenario: Two pairs of ISE 1.2 with patch 7 and using a CDA patch 2 in order to map users that do not directly login into Active Directory. I´m using...
Resolved! runnig CISCO ASA ASDM module
Hi All I have cisco ASA 5510 firewall running 8.4.7 ios and I want to configure ASDM however I install different asdm and asdm idm launcher and none of them are working, is there any compatibility matrix for the ASA IOS & ASDM version?
I would like to know what is the best way to schedule remote backup of FMCs and FTDs? Also how to do remote snapshots. Any suggestions!
