Trying to deploy both Web-Cache and HTTPS 443 WCCP to an FTD. I can get the 443 tunnel up, but not the Web-Cache, the deploy fails.Lina messages FMC >> clear session FMC_SESSION_1 accessMain-3120-SFW >> info : WARNING: This might result in parallel a...
Forum Posts
Resolved! Bidirectional ASA ACL to FTD ACP
One of the things discovered with the Migration tool is it assumes the Inbound for an interface is default and only recognizes outbound. I have 3 DMZ interfaces that I control traffic from servers inside the DMZ to have access to other interfaces an...
7.6.0 is listed as both affected and fixed. Please can this be confirmed which is correct?
Palo Alto has a function in their firewalls called policy optimizer that can identify applications seen in a port-based access rule and then convert those rules to application based. I have not seen anything equivalent in FTD, so what’s the best stra...
Hey guys. I posted a few months back about an FPR issue I was having. I had an inside interface 192.168.1.1 and my outside 100.1.1.1. No NAT. Not going out to the internet. I wasnt able to ping from outside in. So I made an acl:access-list OUT-IN ext...
Resolved! Cisco ASA VLAN understanding
Hello team, I have been searching for a document that indicates the information I need and I have not find it so I believe may find something from your knowledge as well. I have an FTD that is managed by a FMC. The FTD has a physical interface that h...
How do I configure a recently deployed FTD to use a Syslog server that is on the other side of a Site to Site VPN connecting that FTD back to our main office? The other network devices at that location are easily able to reach the syslog server, but...
I upgraded from 7.6 ( worked fine ) to 7.7 today. Lab gear so no impact, but this is a terribly buggy release. After an hour of making sure all of my browsers are up to date, clearing them out of cookies blah blah - the 7.7 GUI will work for a minute...
Hi Team, I'm trying to understand whether device running/startup-config will be erased after migrating Firepower 2110 from Platform to Appliance mode? or does it reset the FXOS config only? as this is all done remotely and trying to minimize disrup...
I need a solution to suppress the IDF alert in FMC. Thanks
> test aaa-server authentication PINGid host 172.26.38.87 username adminPassword: >Attempting to test without entering the password since it is plain text AND logged, it puts a > after the prompt. Anything typed afterwards just sits, have to enter c...
Hello, Currently having an issue logging event ID 722051 to my syslog server from FMC. This specific event shows connections to our RA VPN and details. By default, we log up to a level 4 but that does not cover this event which is a 6. I added this e...
Resolved! BGP SNMP Trap on Cisco FTD
Hi Team,can we monitor BGP on the FTD through SNMP? I don't any option to configure SNMP traps for the BGP on this firewall. The device is Cisco FTD-2110
On GitHub is available a new firewall analyzer tool: https://github.com/WatchThisFirewall/WTF.v1Watch-This-Firewall is a firewall assessment tool designed to connect to firewalls and perform a comprehensive analysis of their configurations. It checks...
Dear Experts, Can anyone please let me know what's the best monitoring tool for Cisco ASA firewall. I know we can monitor it through ASDM, but are there any other alternatives for ASDM. Also I want to know the recommended monitoring tool for Cisco ro...
