I am trying to limit internet access for a server that needs access to several wildcard based domains and I can't figure out if that is possible on a Firepower FTD managed by FMCAs an example, one of the requirements is*.compute-*.amazonaws.com - TCP...
Forum Posts
Resolved! Adding pre-configured FTD to FMC
Hello Community!!! I have a question. I know how the process is to add a FTD into a FMC. The thing is that I don't want to lose the configuration that I have on the FTD because we have VPN S2S, SSL, NAT, Policies, and so on. My question is, addin thi...
Our FMC and FTDs are running 6.6.4. We have some rules that fit better into the prefilter policy, so it it possible to take a rule that is in the standard ACP and move it into the prefilter policy, or will it have to be recreated? Thanks
Resolved! Native Vlan mismatch
I am getting a vlan mismatch all though I have configured the native vlan on both interfaces as vlan 30 interface FastEthernet0/22switchport trunk native vlan 30switchport trunk allowed vlan 10,20,30switchport mode trunk This is the configuration on ...
I have two Cisco Firepower 2110 in HA Configuration. I tried to perform version upgrade from 6.4. to 6.6. I got Device2 (Standbyd device) upgraded to 6.6. But the Device1 (Primary) failed the update. And the Device1 i showing up in maintenance mode a...
Hi there, I got a Cisco vFMC with two Cisco Firepower configured as HA pair. At present the Secondary unit is Active. We got an issue with the Primary unit and have to perform factory-reset. I got a couple of questions: 1) Do I have to break the HA ...
Which version of IOS patches this advisory?Cisco IOS XE Software for Catalyst 9000 Family Wireless Controllers CAPWAP Remote Code Execution Vulnerability I can't find any IOS XE version released around the date of the advisory. The newest version I ...
We have two ASA 5525Xs who's management interface is on our OOB management network (172.16.8.0/22). Until now, the ASAs were sending SNMP (for port traffic) and NetFlow traffic to a server (172.16.4.45) on one the ASAs standard interfaces (172.16.4.0...
HelloI created a site to site tunnel. The vpn is up but the truffic does not pass. Attached the logs found.Cordially
Resolved! Network Link Encryption
Hi all, hope to find everyone well in this timesI had a request from a costumer where he said that I need to have all the network links encrypted but I have no clue how to implement this.Basically the core of the network is comprised by Cisco 9300L i...
Resolved! Two default routes in FTD-2130
Hello guys, I'm using FTD-2130 version 6.3.0 managed by FMC version 6.5.0, how can we use two default routes to the Internet ...
Hi All, I am working with a very peculiar design requirements, where we are using FMC4500 and FTD 4140 with container instances. We have assigned a Eth1/8 interface as logical management interface to be shared by all containers. Now the requirement i...
Resolved! SAML Redundancy for Cisco ASA
Hi Everyone, I have customer who has an ASA in Active/Standby mode and have SAML Single-Sign-On configured. The SAML SSO works fine but during failover, it gave and error "Authentication failed due to problem retrieving the single sign-on cookie. ...
Hello, Zone Based Firewall is dropping packets from one interface to another and I cannot understand why.1) There is a zone-pair between both interfaces2) All IP traffic is allowed3) In the log says (target:class) - (none:none). Not event class-defau...
Hello, I am facing a problem to have RDP port forward to a PC inside the firewall on ASA-5506-X. ASA version 9.8.Ethernet port 1 configured as ouside, ethernet port 2 configure as inside_1, ethernet port 3 as inside_2. other enthernet ports are disab...
| User | Count |
|---|---|
| 15 | |
| 11 | |
| 8 | |
| 6 | |
| 4 |
