We are currently backing up FMC and FTD's daily and have been for about 3 years. Fortunately, we've not had to restore due to a failure, but we have done restores just to check things out. We would like to go through the entire process in a lab where...
Forum Posts
Hello Champs,Can we secure SF300 and SG300 Switches with F/W ver 1.4.11.5 using SHA-2 against weak KEX and MAC algorithms ?What are the commands to execute ?If this can not be done for SHA-2, Can we secure SF300-24 Switch with F/W ver 1.4.11.5 using ...
Resolved! FTD version 6.3 VPN
hey folks does anyone know we running FTD 6.3 FMC 6.3 and trying to create a certificate DN for authentication is the possible? Thank you.
Resolved! Not possible to register firepower 1120
Hello,I have firewpower 1120 managed from FDM.Few days ago I had to erase the configuration. I skipped the initial configuration and made update to version 7 from 6.6Now I cannot register the device, because each time when I try, I receive following ...
Resolved! enable secret line
if i am putting this command on router, router is not allowing me to login. i need to crack password , so i am asking "why we can't login in router is there any other option to login then please tell me either there is anyone option to crack your pas...
Resolved! Blocking hashes in ASA
Is there any way to block hashes on ASA5516? I know there's a way on FirePower.
Hello Experts, I need to know where on FMC I can configure the "threat-detection statistics tcp intercept" for an FTD. I have this configuration on ASA and I want to replicated on the FTDs. threat-detection statisticsthreat-detection statistics tcp...
Resolved! Snort Rule Update
Good morning, I notice each time I log into my FMC, I have a deployment task pending. Upon checking the task details, it's always the rule updates that have been downloaded but not applied to my FTD appliances. I have to manually deploy this eac...
I am using PT v8.0.1.0064.Problem: Every time I open up a pakcet tracker .pkt file with a Cisco ASA, the ports will always be set to "Administratively down", even though I `no shut` them previously, `write mem`, `copy run start`, and saved the pkt fi...
As there is a significant back order for the FPR1010-ASA-K9 I was asked about the FPR1010-NGFW-K9, and whether we could simply re-image to ASA OS. I would normally think yes, but the path Cisco is adopting as of late I am hesitant to say this is a ce...
Resolved! SNMP configuration for FTD
Hi All, I wonder if anybody can assist me with the problem. I have 2 systems. Both version 6.4 FMC-1 with 2 FTD (2110) version 6.4 FMC-2 with 2 FTD (4110) version 6.4 When I get to FMC-1 -> Devices -> Device Management -> FTD I can see the SNMP tab...
Hello guys, I have no idea how to delete RSA1024 bit here as highlighted in picture. Due to weak hashing algorithm of VA Scan , we need to remove the RSA1024 bit Please help .
Resolved! DUAL WAN LOAD BALANCING (50%/50% RATIO)
Hello everyone, May i ask if there is a way to configure a dual wan load balancing with a 50%/50% ratio on both outside interface using FMC. Right now my current config is just basic failover. I have a FTD 5508X v7.0.0.1 and FMC v7.0.0.1 Thanks to yo...
Hi Team, we have a 100 Mbps 2 link it's running auto-failover, and load-balance, now I have to give a dedicated connection from few systems in my LAN, how I can configuration do. we have ASA 5516
I am trying to configure an IP address on my Management0/0 interface that is within the range of a sub-interface of my data plane. When I try to apply the IP address configuration, I get the following error: ASA/pri/act(config-if)# ip address 10.0.5....
