Hello all, happy Wednesday.We have a Firepower 2140 on 7.0.1.1 build 11, and prior to yesterday, our outside IP range was limited to a single /27 network. Yesterday as part of a HSRP installation, we got assigned an additional outside range, a /28. ...
Forum Posts
Hello Everyone,please support to get this issue resolve. I have Firepower 2130 and trying to upgrade the firmware of the device from (6.3.0.4-44) to (6.3.5 or 6.4.0). however when I choose the firmware file and click on install button device complete...
Hello,I am trying to register a FPR1010 FTD (7.0.5) to FMC (7.2.1)- FMC is registered to Smart Licensing- registration over management interface- ping between FTD and FMC is successful- verified registration-key- with or without NAT-IDRegistration ti...
What would be the best way to migrate a current FMCv 7.2.1 which hosts 4 NFGW to another FMCv without losing configuration.Create a backup of the managing Firepower Management Center FMCv and import it to the new device, without losing any configurat...
Resolved! LOCAL Server Group Account Lockout
Scenario: I'm on ASA 5555Users/AAA > AAA Server Groups > LOCAL Server GroupEdit > Enable Local User Lockout > Maximum Attempts = 3I can't find any info about how/where to unlock an account or if it happens automatically.
Resolved! Configuring Control Plane ACL on ASA
Hello,I configure a control plane ACL to a outside interface for limiting AnyConnect access on ASA 5520, will enter the following commands on the device:! interface GigabitEthernet0/0! nameif outside! security-level 0! ip address 1.2.3.4 255.255.2...
We are analyzing the logs from all of our devices. Recently, a question came up on the %FTD-6-302013 message. It appears to be only happening on outbound connections from the inside network to the outside. We never see messages like that for connecti...
I'm running the VM version of the FMC. I have 7.0.4 installed. When I go to an SFR module and go to Advanced Troubleshooting, the only option I have is "File Download". I don't have any tabs for Packet Capture or Packet Tracer. What could be caus...
Does changing these types of parameters in the FMC apply to all devices managed via FMC such as the FTD?
Resolved! FMC Upgrade versions
Hello,I have a Cisco SFR in the form of an FMC running version 6.7.0.3. It is supporting firepowers running version 6.4.0.132. The FMC is just an FMC; it is not an FMCv300. For some reason, I was under the impression version 6.7 was as high a vers...
I don't even see how to configure vty lines on the FTD. Can't find anything covered in the docs about this. Any help?
HelloI have Firepower 1120 and configured s2s VPN to 3rd party using parameters as belowIKEv1 Encryption AES-256 Hash SHA Lifetime: 21600IPSec Encryption AES-256 Hash SHA Lifetime: 3600DH14 With NAT nat (local_ip_pool,outsite_interface) source stati...
We have a couple FPR-2130s and FPR-2110s. We would like to change our default/dedicated management port to be one of our inside/data ports for simplicity's sake (Management1/1 -> Gig1/2). According to Cisco, you can do this via the CLI or FMC gui, bu...
Hi all,We purchased the Firepower 2110 loaded with ASA. While sending from factory and there was no base license enabled.We commissioned the Firewall and while we are trying to access the Firewall from outside Network it throws an error as SSL.
Hello Team, We have got a request from our client to add a security policy on the Cisco FTD(4115). The security policy has 800 Network objects(IP addresses and subnets) in the target field. We are not sure how this will work because the firewall is ...
