Hello,I'm new to the community here and I've tried searching but have not found much that specifically answers what I'm going for. I have a firepower 1010 unit--a few actually--that we run our alarm panels through. These are DMP XR-550s and XR-150s m...
Forum Posts
Resolved! Manually recreating Tunnels\Cryptomaps
I tried to migrate using the Firewall Migration Tool the settings from ASA 5505 into FMC and it worked great for NAT, ACL, Route, Objects but unfortunately failed on the Site-to-site and vendor tunnel groups and outside crypto maps. Has anyone any e...
Hi Cisco ASA syslog message 302013 (ASA-6-302013: Built inbound TCP connection) does it really means a established TCP connection (after 3 way handshake) or does it mean that just the SYN packet is allowed through the firewall? Regards, Aneesh Kaim...
My company is thinking of getting Tanium as a one stop all in one solution for our needs.It seems to be more for system such as "unix/redhat/windows" but I am wondering if it has any functions for networking components. ? They also claim that there i...
Question 1: If "show asp-drop" has any entry, that is considered to be a dropped packet right?Question 2: Is there a way for me to troubleshoot the above capture to figure this out? This information is not showing up in other logging. The traffic ju...
Hi,Scenario: Server is sending an "initialize" packet every 10 seconds to an ip beyond an ASA.Server sends on upd/4000, expects a response on 4001.The very first time this happens is is successful, after a few minutes the end device stops receiving t...
Hi All, I hope some of you might have come across the same issues and has a solution which doesn't involve re-purchasing the licenses for the equipment. I have recently converted an FTD 1010 Appliance from FTD to ASA OS. I'm facing issues with Licens...
I have a server users must connect to with telnet over VPN threw the 1140 Firepower. The telnet connection drops after 1 hour per user, I have increased connection time on server still have same issue. The users are not idle they can be on the server...
hello , i have ASA 5516 with firepower module, trying to install SFR image it is stuck in recover all the time i updated some logs also i changed SSD and got same result
How does a connection from an internet device reach the firewall's outside interface with a connection to a private IP? It's blocked, but still concerning some since I don't have a static NAT for this device, etc.
Resolved! FTD Upgrade question
HIOur FMC is already on version 7.0.1 and x2 FTD still running version 6.6.x I want to upgrade one of the FTD's will this be ok to have one FTD on version 7.0.1 and the other FTD on version 6.6.x, im just think about the Snort versions thats all,.??...
Hello Network Security Experts,What is the implementation status of RFC 2154? Any input is greatly appreciated! Thank You,Audie
It seems that there isn't a simple explanation of this when you google it...I have seen hundreds of articles and forum entries explaining the difference between static NAT, dynamic NAT and PAT and I think I understand the difference between them. How...
Hello, Does anyone know if you can setup Cisco FMC with 2FA using Microsoft Authenticator? I know you can with DUO, but wondering if other third parties for 2FA will work? Thanks.
As I was trying to deny a specific traffic between a time range based my time zone synchronized with ntp, I have noticed that the policy does not take affect because FTD time zone is still based on UTC and my changes does not take placed.Kindly, I ne...
