HiHow can FMC access cloud services (e.g. Cisco Smart License Center), without using management interface, that is used for communicating with devices like FTDs. In other words we want to use different interfaces for internet access and internal com...
HiIs it possible to generate a report which shows our full FTD policy (Firewall Policy). ?? Thanks
HI ALL,I have recently setting up Cisco FTD and FMC , i am trying to create a two port channel one will be INSIDE and Another will be OUTSIDE, these port channel i added two interface each for inside and Outside. what i am trying to do to allow 8 vla...
Hello all,Currently trying to enable our Remote VPN users to route through our primary site and back out for specific subnets. We're using a FTD 2110 running 6.6.5 managed by an FMC running 6.6.5.2i added the desired subnets to the split-tunnel ACL a...
Hi,I have a question regarding the FMC minor upgrade from 6.6.5.2 to 6.7.0I've watched some videos, read procedures and find out that any pending deployments should be pushed prior the upgrade.I have two sites with ISP issues at the moment therefore ...
I have similar to the following - policy-map global_policyclass Class_FP sfr fail-open class-map Class_FP match any service-policy global_policy global If I want certain traffic to not go to the Firepower SFR what is the best way to achieve this? ...
Hey guys I'm having an issue where the traffic flow gets dropped to secondary Load Balancer upstream to the LAN here is my config, am I missing something? I also attached a network diagram for reference to what I am trying to get accomplished. Any su...
Dear all,Please advice in one thing. Imagine I am looking for user which is causing most of the connections over my firewall.On ASA I was using simple commands (where 500 is number of connections per ip address):sh local-host connection udp 500 | i l...
This is my first time posting here, so bear with me.Our company runs ASA5545X with Firepower in each of our 2 data centers. For the last 2 years, we have been having an ongoing issue where they stop passing traffic. In the last couple months, it has ...
Hi Expert,I'd like to modify order of accessrules via API.I explored api/api-explorer, however could not find related fields like sequence number.I also couldn't find fields regarding Category.Could you please let me know they are available?Thank you...
A client of mine has a Cisco ASA that's currently running on multi context mode and needs to configure a site to site VPN to his AWS VPC. Kindly advise how to go about this as VTI is not supported on ASA in multi context mode.
I am confused as to whether my ASA 5506 units have firepower or not. Reading through forums so far, I gathered that firepower is not really supported on the ASA 5506 on versions 9.10 and up. Both of my ASA 5506 are running 9.14. A couple of show out...
Hi,I have Firepower 2100 (Cisco Fire Linux OS v6.2.3 (build 13) Cisco Firepower 2110 Threat Defense v6.2.3 (build 83))and my pc have IP is range: 172.31.31.xSSH (IP: 172.31.31.254) is ok, , unable to access https, and unable to add management IPv4, w...
I'm setting up a FPR1140 FTD 6.7, which is managed with on box Firepower Device Manager, for BGP routing. However I can't seem to find a way to configure "soft neighbor reset". The classic soft-reconfiguration inbound command does not seem to be supp...
How does one go about doing threat analysis within FMC? As you can see from the attachment the dashboard lists threats. I am extremely weak at this part of Firepower and have not a clue how to go about an analysis workflow here. What would you guys d...
