Welcome to the Cisco Community Ask Me Anything conversation. Submit your questions from Wednesday, March 4, 2026 through Wednesday, March18 2026. Our Experts Ike Chon, Scott Nishimura, Annya Martinez Foster, Jyhan Ocana Casillas, Eder Pacheco, Willi...
Forum Posts
Hi everybody, I have two FTDs in my deployment. As you can see in the following figure, one of them has been stocked in 99% process and waiting more time and rebooting the box did not help. Any ideas? Thanks
Was looking for a way to find and remove unused objects in the FMC (6.2.2) like you could with ASAs in ASDM. Is there really no way to do this? Every other day I find some annoying little thing about the FMC and FTDs... Regards, Keith
Hi everybody; My lab consists one FMCv with version 7.4.2.3 and one FTDv in Routed mode with version 7.4.2.3. I have created an Access Control Rule with the following conditions: I have also configured the logging operation as follows: Now when...
Resolved! Cisco Firewall PAT
Hi,Looking for your suggestion here..I have cisco internet 3850 L3 switch with ISP provided ip /29, switch is connected to FTD firewall where i need to do pat with free ip of /29 range.---------------------------------------------------------------...
We want our outside interface of ASA 5500 in OSPF to receive routes (learn from neighbors), but not to advertise/distribute any routes back out that interface. Simply not sending any routes or advertise any routes to outside, it should be only receiv...
FMC: v7.3.0 (build 69)FTD 1120: v7.2.5ISE-PIC: 3.2.0.542, Patch 4We have a new integration between ISE-PIC and FMC that we are trying to use in policy. I can see some users are shown in the Unified Events, but many entries show as "Not Found". For on...
Hello, We have a policy-based VPN to a third party that randomly goes down briefly, but after it comes back up, we still lose messages for 15-20 minutes. Each side says they have no touched the config since it was created years ago. We got on a call ...
Hi All,I'm currently deploying a pair of FTD 3140s in active/standby HA. During testing when rebooting or powering off one of the FTDs, we are seeing about 15 seconds of downtime which is due to the default peer poll time of 1 second and peer hold ti...
Resolved! Firepower 1120 HA active/active
Hi,I have to Firepower 1120, and I want to configure them as HA active/active.Is this posible?
Hi All,Hope everyone is doing great. I have upgraded my FTD Snort V2 to Snort V3 last weekend and it was successful but i ran into some roadblocks.Here are the list of problems encountered below:1) Error pops out that AMP cannot connect to cloud2) tr...
Hi,We recently staged our Firepower 2120 from ASA to FTD 7.4.2.2 and are managing them with FMC 7.4.2.2.The FMC shows the chassis serial numbers for all Firepower 1120 and 1150, but it does not do it for the Firepower 2120. On FTD via CL the serial i...
Hello, I'm going to upgrade my FMC from 7.0.7 to 7.4.2 directly without upgrading my FTD (7.0.7), I'm using Flexconfig configuration used for PBR. I read that starting from FMC 7.1 flexconfig configuration will be removed from FMC and it needs to be ...
When creating a third party SSL cert for VPN using FMC 7x do you use the Intermediate or Root certificate for the CA?Thanks, David
Resolved! fs-vmw-2-sw-k9 SKU migration
Hello Cisco Community, I would like to know if the existing FS-VMW-2-SW-K9 license available in a client's Smart Licensing portal can still be used to activate a new FMCv instance. Given that Cisco has announced the End-of-Life (EOL) for the FS-VMW-2...
Hello,I've successfully configured an external syslog server on FDM, and it's receiving messages correctly. I've set the Default Action Block to send syslog messages, and those are arriving as expected on the external server (among other messages).Ho...
