We have a Cisco ASA 5525. There are many references to a server "dc" in the ASDM. The ASA is using "dc" as a DNS server, it's using "dc" as a radius server. And all of these things are working properly and I'm able to ping "dc" from the ASA. However ...
Over the past month, we've found two vendors who are using VPN connections from their systems on our network that we were unaware of. I've been searching for a way to block unauthorized VPN connections - one is running on port 443/tdp and the other o...
Hi, so my 1 of my HA FMC MonetDB is Crashing right now.The solution i think about is by reimaging the FMC. I want to know if i reimage the FMC does it restore the MonetDB or it just gonna be the same MonetDB as before?Also, i have 2 FMC in HA mode, b...
We currently have a few FTD firewalls running 6.4 managed by FMC 6.4. We are going to upgrade the FMC to 7.0 in preparation for new firewalls. After FMC upgrade, it will be like FTD 6.4 + FMC 7.0. As I understand, 3des and dh5 are depreciated since v...
Hello, When the remote end is using a dynamic IP you have the option in FMC to set the remote end IP address as dynamic, but you can also configure the Site to Site VPN as a "Hub and Spoke". Both types of VPN will use a dynamic crypto ACL, so is ther...
Hello All I have FTD 2110 running ASA 9.14.1 in appliance mode. Via Console port I connect to fxos admin and through to fabric but the commit-buffer command does not work. I am trying to change the mgmt IP from default to a new static. Can anyone hel...
Hi allWe have an FTD 1010 pair, in high availability, running version 7.0.3 and Snort 3 which is incorrectly classifying packets as malicious and blocking them. We have been advised to downgrade to Snort 2. Has anyone done this before on an HA pair? ...
Recently migrated from snort 2 to snort 3 and looking for best practice to maintain and review IPS policy. For example, in new snort 3 policy I no longer have the POLICY LAYER where I would go to view any NEW or MODIFIED rules from previous update. H...
I know this request was submitted multiple times but bottom line is with Cisco Systems and FMC drama, all i want is to setup multiple redundant Firewalls in multiple Data Centers where objects and NAT are same but 2nd octet different. The primary DC ...
Hi, so i just updated my FMC from FMC v 6.6.5 to FMC v 7.0.4.I check the troubleshooting file and it seems like there is a problem.I check the Post_Update_DBic and found this warning :[Wed Oct 5 19:42:38 2022][WARNING][missing eo reference] database ...
Hi so i updated my FMC from v 6.6.5 to FMC v 7.0.4. This update also updated my MonetDB version from v11.37.12 to MonetDB v 11.41.25. But after i did the update the FMC start not showing event, and when i look at the CLI it say database 'eventdb' has...
It is no longer possible to import the user certificate with OTP, the button has disappeared,The GET CERTIFICATE button it is no longer to be found,And from asdm I don't have the option to export the certificate for the user,
Hi,I have been trying to find where the setting is to limit the time that someone can use VPN using AnyConnect on a firepower 2110 appliance. For some reason i cannot find it or locate it and i want to disable the time limit. When someone connect wit...
I am looking to replace a FortiGate firewall which is currently working in transparent mode handling mutiple subnets with ASA 5515. Currently, I am testing transparent mode configuration on ASA 5505, and it will not forward any traffic that is not i...
Hello team I face problem to deploy Security Network Analytics Collector 7.4.1 on VMware - the process in loop with the error (screenshot attached). The SMC 7.4.1 on the same VMware installed fine. Thanks Michael
