There are several ssl decrypt rulesRules for category - 3 do not work. And traffic is being decrypted.The main rule -6 informs that there are no categories in the rules -3. What's wrong?
Forum Posts
Hi,We have FMC 7.4.2.1-30 and Firepower 1120/1150 with the same release. Every morning the FMC wants to deploy the following changes on all firewalls, although nothing has been edited on the FMC during the night:dns server-group DNS_Intranet no doma...
In Cisco FTD firewall, Do the multiple CUSTOMER VRF on our OUTSIDE use the same AS number? with reference documents
There is requirement of disabling SIP Alg as due to some issue in voice call which get disconnected after few minutes . It has been suggested to turn off SIP Alg in our Cisco Ftd firewalls . What would be the impact on traffic and how can I disable S...
Hello ASA 9.20 release (on FPR2100 device). I had a TAC case about TACACS+ Remote Address = 0.0.0.0 in certain Authentication Requests (when using public key auth, and also in Authorization requests) - the TAC told me to "no ssh stack ciscossh" - tha...
Resolved! FTD Reference Bandwidth
Hi all. Im trying to configure OSPF on a FTD firewall trought FMC. The idea is to tunning the Ref Bandwidth to be homologous on the nexus neighbor side. Reference bandwidth unit is 100 mbps Actually the Ref Bandwidth is by default on the FTD (7.4), i...
Resolved! FMC with Identity Policy using Azure AD
Hi All,We are currently running FMC and FTD with user identity access control polices. FMC is integrated with ISE, which in turn is integrated with our on-premises Microsoft Active Directing domain using WMI so that user to IP mappings can be passed ...
Hello Pros.How to fix vulnerability CVE 2025-20197 thru 20201 on Cisco 4300 Router and 9200 Switches. What IOS XE version will fix the vulnerabilities for a 4300 router and a 2900 switch. Thanks in advances.
I'm trying to test a FTD in AWS. I'm using the PAYG AMI (ami-04d7dfdc0d700e259). I assumed it would include the required licensing as it a PAYG. Fortinet, PAN, F5 etc include the licensing with their PAYG AMIs.When I try to add a new IKEv2 policy usi...
We have a ASAv in Azure that is only used for AnyConnect. We have a Site-to-Site between Azure and a Watchguard FW at our Colo. The tunnel is up but I can't get to anything in the Colo while connected to the Secure Client. I can get from Azure to the...
Hi,Is possible to use the Security Intelligence Network Lists and Feeds (custom feed) on ASA 9.14? (no firepower)The requirement is to block a list of Ip taken from internal threat intelligence managed outside the ASA.Thanks.
Has anyone ran into the issue where logging into ASDM for a Cisco ASA 5516-X give the following error:"The certificate present in this device is not valid. Certificate date is Expired or not valid as per current date"How could we renew the certificat...
I am getting this error when trying to launch ASDM. New install of Windows 10 Professional. I have been running this successfully on other Windows 10 PCs. Has anyone seen this and know the fix?
HI CAN SOMEONE HELP ME WITH BASIC CONFIGURATION?THE COMMANDS FROM 5520 ARE DIFFERENT.
Hi,We're having encountered this bug here on all Firepower devices: https://bst.cisco.com/bugsearch/bug/CSCwn92248Firepower 1120 (HA active/standby), running FTD 7.4.2.2, connected with 4x1 Gb/s vPC to a pair of N9K-C9348GC-FXP, running NXOS 10.2(4)F...
