Hi Alls, I have a question when I try to connect 2 group of redundancy Firewall as picture below. I never try before. Is it possible to connect like picture and what I need to configure in both side? Thanks in advance, and have a very nice day!
Forum Posts
Can I use syslog for collecting connection events [eg. Connection event, IPS event, SI event, Malware event etc] instead of eStreamer ? Are there any connection log events that may be missed if I use syslog ?My understanding is that the FMC/estreamer...
Hi , can anyone please help to advise how to renew cisco asa v9.12 remote access vpn (ipsec) certificate through asdm? we use certificate to do vpn authentication, now certificate on asa is expired, need to renew, thanks in advance.
Resolved! Cisco FTD interfaces monitoring
Hello Team, I got two Cisco FTDs being managed by Cisco FMC. I'm looking for a way to monitor the interfaces (inside and outside) of both FTDs when there is change in their status i.e. Up, Down, when there is no traffic passing through them etc. I ...
Hi guys, Can someone point me to recommended ASA version for ASA 5555, as I don't see any version being starred in the download section? Thanks a lot!Milos
We have existing tunnels and we were told that a new tunnel has to be FIPS enabled. If we turn on FIPS, do the existing tunnels need to be rebuilt?
I believe I understand the purpose and function of the command. For example, in our network we have it set to 15 minutes, and then it will erase the MAC from that port. If I connect a computer on port X, and it works before going home but I leave it ...
Hi, I have the IP Phone and Laptop connected to the same switch port. Although I use the authentication host-mode multi-domain command I have a security violation error: %AUTHMGR-5-SECURITY_VIOLATION: Security violation on the interface Fa0/15, new...
Hi,I am in a challenging situation where I need to utilize the 2 interfaces belonging to same network /same vlan. I fully understand that Firepower is not designed for switching purposes but still taking the opportunity to ask here if there is a way ...
Hello team , I tried to set up a CIsco ISE version 3.0 within an existing topology where we have already been using ISE version 2.7 . following actions are performed for the deployment of Cisco ISE 3.0 Installation and basic configuration of cisc...
I am currently parsing a very big environment with a large amount of network devices. My job... to parse the data as a whole to display audit events like Logins, Log off, object creations, access, and so on. At the moment I have these types of dev...
Hello team, We have problems to update snort3 signatures (LSP) from automatic updates on the FMC, we are geting the "device is not registered" message. We use proxy server to contact the public sites of content updates, and the snort2 signatures are ...
Hi Guys, i need a solution, we are running cisco ise in our infra along with Cisco FMC as well. Now we are planning to have pxgrid integration with Cisco FMC. Now a request has come that SGT tags in the Cisco ise will be based on the AD groups an...
Resolved! Upgrade 2130 to 2140 appliance
Hello, just after a bit of advice about the best method to replace FTD hardware managed by FMC. Currently have 2130 HA pair that are to be replaced with a 2140 HA pair for performance requirements. The 2130 are managed by FMC and the new FTDs will al...
Resolved! ASA to FTD 1140 migration
Hi Members, I am trying to migrate 2 standalone ASA 5525-x on 9.12(2)9 to firepower 1140 FTD 6.4. We don not have the ability to setup an FMC in the environment. Are there any alternative options to migrate the configuration without the migration too...
