The basic Threat license on a Firepower 2110 is "L-FPR2110T-T-1Y". List price is US$2589.40 for one year. "L-FPR2110T-TMC-1Y" is for Threat, Malware and URL Filtering and list price is US$6602.97 for one year. Contrast that with a Firepower 1010: $14...
Forum Posts
Hi,Why do I see two entries on the FTD Analysis page for each user, even though the users have authenticated and connected to the RA VPN? Thank you.
Hi All, The more I read about this topic, the more I get confused.I am pretty clear on the deployment modes, routed and transparent modes and how they work.Again, I clearly know how the interface modes work.The source of confusion is the combination ...
Resolved! Cisco ASA
I have a Cisco ASA 5516-X with a new interface that I am setting up for Cisco AnyConnect. I have gone through the AnyConnect VPN Wizard but I am not able to get to the IP address that I have configured (12.190.109.100) from outside but I can ping it ...
How do we mitigate the following vulnerability on our ASA. We have received this output from penetration testing.
Resolved! Firepower and FMC Upgrade
Hi All Have this model Model - Cisco Firepower 2130 Threat Defense Software ,6.2.3-83 VDB ,290.0 Rule Update - 2017-09-13-001-vrt (1) I would like upgrade to the the latest version. I do not have Support contract. So I would like to know the price f...
Resolved! Escalation for FDM on FTD
Hi Cisco I would like escalate to Cisco Technician. After few days of try to get things working with FDM to get Identity NAT Working. I have the a problem as my there seem to be handover problem on one of the legs for FTD. I have enclosed the confi...
Is it possible to block a device trying to connect via AnyConnect with the Cisco AV pair mdm-tlv=device-platform=apple-ios? I have created an AuthZ rule which denies Cisco·cisco-av-pair 'contains' apple-ios, but it never matches the rule.
Greetings to All, May i know is it possible if i want to upgrade Firewall Secondary (Passive) first with higher firmware compared to Firewall Primary (Active) still running with the lowest firmware? After completing the firmware upgrade, i will fail...
good day all looking to get our FMC to show more than 'No Authentication Required' in the 'Traffic by User' paneland also to be able to Apply 'Identity Policies' we have no ISE environment , and not really looking at the full-fledged setup either. s...
When running AnyConnect VPN on macOS, both IP addresses (VPN and physical) are registered in Windows DNS (RFC 2136) after establishing the VPN tunnel - doing the same with Windows clients just the IP address assigned to the VPN adapter is registered ...
Hello, I am currently in the process of upgrading my ASA Version 9.8 running on a FP 2210. I am currently using the Firepower Migration Tool, it is able to pull down the find no problem from the ASA. However, when I put in the IP for the FMC and User...
Hi mates, I'm migrating the config on two asa5505 to the new asas 5506-x. In our initial config, we had the three first ports configured as the outside, and the other five as the inside. The IPs for the firewall were assigned to the related vlans. Th...
Resolved! FP2100 ASA Licensing
Hi Guys,I would like to check if we really cannot use PAK licenses for ASA in FP2100 firewalls?Another thing is, I tried also to generate a permanent license reservation (PLR) but I am failing. It states that "The licenses cannot be reserved because ...
Hi All , I would like to know ASAv can authentication with more Radius server in VPN Tunnel ? In configuration below. If I have 2 radius group on ASAv and 2 tunnel / group-policy . can i separate radius group depend on tunnel-group or not ? Example...
