Hi All, I have configured ACP to block Ultrasurf and TOR bowser using the best possible way however the i'm not able to block them sofar. please assist.
Forum Posts
When looking under Analysis > Intrusions > Events, I am not able to see any information under "Packet Information"Is there anything I need to do to enable this information? It would be intresting to see more info after an Intrustion Event has been dr...
Ever since we moved to the new NGFWs, the way our ACPs are setup and ordered, outside scans show ports open because of the way FTD processes rules. Due to it processing a layer 7 rule, it passes the traffic to SNORT for evaluation and therefore it l...
I am trying to move to multi-tenancy with our Firepower system because it has been decided that different groups need different access at this point. I have not been able to find much documentation on migrating this way. I do see that I need to remov...
Hello. I am trying to make some filtering rules using the integration with the active directory, I already integrated the active directory in a realm and I get the groups and users, additionally I add them to the access list without problems, bu...
We have a client that has deployed Cisco FTD appliances throughout their network. We have created a suite of tools that allows us to look at the switch and get the MAC addresses of the devices attached. Using the data we are able to join the device t...
Hi Team, We would like to know if FMC can block ULTRASURF in browser add-ons?
I am trying to gain access to our ASA 5525-X. Was setup by someone no longer here.I have tried all the password disable reset instructions by going into ROMMON mode and changing to 0x00000041 configuration.Cannot find anything online anywhere that he...
I have a couple questions I hope you guys might be able to help me clear up. I've discussed this a bit prior but now I have more thoughts and a bit confusion. I would like to separate VPN from management of my FTD's but I am also doing a meshed S2S t...
With a FMC managed FTD, when you enroll the device for a certificate from a SCEP CA (Windows Server in this case). Where is the request initiated from? Is it the FTD's management interface or one of its data interfaces? I just assumed it would be ...
HelloI am upgrating my FMC from 6.2.2 to 6.4.0.After uploading the package and starting the installation i have the following error:installation failed peer registration in progress. please retry in a few moments.I have unregistered the device and st...
Hello, I have experience from PaloAlto L7 filtering and I am trying to mimic the behavior on the FTD but looks like it maybe doesn't work like that. In essence I want to only allow specific apps and deny everything else. The issues that I have on T...
I would like to ask cisco to block some sites that are not being blocked when I use the following DNS(208.67.222.123, 208.67.220.123). How do we do it? Where to contact?
Hi all.FTD v7.2.0.1 configured from scratch as perimeter firewall, FMC managed. For testing purposes, only two zones, "inside" and "outside".I created a NAT policy, set up a static "Auto NAT" rule with "inside" as source zone and "outside" as destina...
I am trying to find a way to export ACP PFP and NAT table change an interface name and re-import. I am adding a backup internet circuit and the only thing I need is to change the outside interface name ex. "outside" to "backup" then re-import. Is thi...
