Hi All,I've deployed a FMC managed FTD at a remote office, where it's managed via OUTSIDE interface.Usually with an ASA it's possible to query SNMP on the INSIDE interface through the IPSec.This doesn't seems possible with the FTD. ICMP doesn't work ...
Forum Posts
Resolved! FMC/FTD VPN issue
HiGot x2 2100 FTD's managed by same FMC and got the VPN up between the two but oneside has no decaps any ideas, ? there is no NAT configured do I need it as some docs suggest because it was working before one FTD got replaced due to failure with no N...
Hello team, I have to create a new envirotment where Traffict ( signals) coming from outside ( internet ) has to match in one of my ip publics, I have to nat by portforwarinng to a dmz and that it. Only with ACL ( without ZBF) it works, but w...
Resolved! Upgrade from a 5505 ASA
We are planning on getting a new 500gbps/1gbps connection installed in the next few months and we're currently using an old 5505 ASA which we need to replace. What are some options that can handle the bandwidth?
I am working on migrating from an ASASM to FMC/FTD. I know that the ASASM isn't fully supported by the firepower migration tool, but the policy and objects are pretty long so we are doing what we can with it and the TAC said that it would not migrat...
Dear all,I have 2 FTDs in the environment managed by FMC. I want to generate Reports for CPU and Memory and disk usage for the FTDs. how can Reports i generated for weekly or monthly as schedule.could anyone can help for it? Thanks much.
Resolved! FTD 2130 Ports
Does Ethernet ports and SFP+ ports for FTD2130 can operate as wan port?
Hi team,I'm trying to understand how WCCP is supposed to work on ASA as well as few limitations listed in Cisco documentation. First of all, the following configuration example says that the cache responds directly to the Web client, bypassing ASA:ht...
Hello all,I am facing the below issue. I have an ASAv in Azure which is being monitored by PRTG monitor using pingAfter i upgraded from version 9-17-1 to 9-18-2 , i lost ping to the interface i was checking. If i ping the VMs in Azure behind ASAv i c...
Hi - We have a multi context firewall with portchannel subinterfaces. Is there a way to failover monitor the individual physical ethernets bundled into the portchannel? So if one of the physical Ethernet links in the port-channel goes down, we want t...
Hello,I recently started working with Networking and I was looking through the configurations of the ASA, and it appears that our federated Microsoft server is configured for an IP address that is not the IP address of on 2 on prem servers. I also no...
Hi Everyone, we have an IPSEC tunnel between FP2110 and ASA firewall. Tunnel is stable and operational but every hour, at the same time, peers (firewalls) at both ends send TCP RST packet to the endpoints at their side that are having active sessio...
Hello Sec GURUs, I have two different questions please: 1- Im using Anyconnect with LDAP server (AD) to feetch the user ad creds, everything work fine as long as i'm point think LDAP server DC=companyname, DC=domaine, DC=com. Once I adjust the BASE D...
Dears, For now we are using 2.0 version. As I know we have to do these steps in order to get 2.7 and higher - 2.0-->2.2-->2.7The question - is there any manipulations with licenses? I mean do we need to convert them to smart, or export and then impor...
Resolved! upgrade software version ASA 5525-X
Hi all, as per title I have to upgrade software version of an ASA 5525X. actually my current version is 9.1(1) so for the ASA upgrade path i need upgrade an interim version 9.1(2) then I can proceed with the 9.12(x) or 9.14(x). My problem is: version...
