Added SSL inspection policy and it works as desired. The issue is that Chrome does not like the FMC cert and will not allow me to access any HTTPS sites because the sites are re-encrypted with my FMC Cert. Has anyone else encountered this issue? -W...
Forum Posts
I have a layer 3 switch (Cisco Catalyst 3560) with multiple vlans configured on it, and connect to this switch to the inside interface of ASA 5510 (default VLAN IP) All vlan have L3 interface with IP address, and for the clients the default gateway i...
Hello,I would like to ask if the license for the FMC vmware is perpetual or i have to renew it every year?ThanksIoannis Gerokostas
Hi, I am in the process of setting up a pair of FTD 2130 (HA). These are replacing our ASA's.FTD2130 purely used for Cisco AnyConnect. All my profiles are in place and remote AC connection works well. I am stuck on loading SBL Modules. I've followed ...
Hello i have HA FW CISCO 1010 ..so i want to upgrade the two FW active passive with FMC 4000. yesterday , the update is performed only on the FW2 but the upgarde is not performed in FW1 !!!? FW2 will be 70.4 but FW1 is still 6.6.1 ...
Hello, I have two questions regarding the FTDs ability to have management moved off the management interface to the outside interface. I do not have a FTD 1010 to play with in the lab. In the documentation it says that we can issue the command confi...
-------------------------------------Title:"Intrusion Event Not Occur"-------------------------------------Hello,I'm having trouble with IPS intrusion events not occurring as expected.Test traffic that should be dropped by IPS(Snort 3),On the FMC, No...
Hi recently we got an auditor requesting that we change the self-signed SSL on a cisco C1111-8P running IOS XE Version 17.3.4a because the SSL chain has been signed with a weak hash, in this case SHA-1. The following certificates were part of the cer...
Hello All,I'm trying to configure a rule on ASA from a list of URLs to private IPs, the config I have is below: dns domain-lookup outsidedns server-group DefaultDNS name-server 8.8.8.8object network private_ips range 10.0.0.0 10.0.0.20object network ...
I was looking everywhere for this Cisco Live Presentation...is it possible to share it?, I need this so bad!! Thanks Folks
I'm trying to login into my ASA 5520 ASDM IDM luncher, but when I put the ip address of the ASA, the username and the password into the ASDM launcher I'm getting "unable to launch device manager from 192.168.x.x.can anyone help. I have read through t...
Hey Guys I am replacing Firewall ASA NAT with Firepower based FTD can someone explain 1) In the below Auto NAT rule I cannot create a Duplicate rule to allow Destination Interface Backup. It will complain in Firepower that duplicate source cannot be ...
Working on a FlexConfig for EIGRP, have managed to work my way through most of the configuration.Still having issues with a couple commands....1. passive-interface $outside2. distribute-list $acl outwhen i try and deploy, the failure log always shows...
Resolved! Problem Agent SourceFire
Hi,i'm trying to configure AD agent, but always return the following error appears: I checked LOGs of agent, the follow message appears: "26/09/2015 20:48:23","debug","[0001] - Error connecting to 192.168.0.15: System.Management.ManagementException: ...
Assume these are applied to my Gig0/0.98 svi on my router for wireless devices.Interpret my acls! What is going on there? Am I missing anything?Make recommendations for improving these acls.How would I configure on a router?I have uploaded notes an...
