Hello Everyone, I have a FTD pair in HA with active standby configuration. Both peer are connected to DC switches using VPC. A direct failover and staelink is connected between both peers. We do not have any data interface monitored or standby ip con...
Hi all!
New to FTD...
On other firewalls I've worked on, you could set up a "virtual" IP on the firewall itself that it could then NAT to hosts behind the firewall. I know where to set up the NAT rules using FMC, but where do we set the additi...
Hi All, We have two Cisco FTD device ( manage by on-box means FDM) connected to 3 ISP setup on WAN side namely TCL, Airtel & Jio .TCL link is used for Site to Site VPN and Internet access.Currently all traffic is routed through TCL link. I need to ac...
Hello Community,I have a problem regarding one of my device, in this case the cisco Firepower 2110 appliance, i'm using it as my NAT device for nat to the internet. there's nothing big about the configuration, the configuration in my appliance is onl...
could someone please advise what the equivelant of show etherchannel summary is on FTD. on regular cli when I do show ? I cannot see any command to give me that details. by doning #show int port-channel .. I only get the satus which is up.
Hey I m new to network security. Need to design below setup. Advise how will I achieve thisI have partner connected to network. I want my hosts in DMZ via RDP from GRN able to access the services . Also any antivirus update or patches needs to be up...
We have Site to Site VPN setup between few servers to a vendor. However seems all traffic including these servers internet destined traffic is also passing through the S2S VPN. How should I exempt internet traffic from S2S VPN
Hi All, Need to configure below password policy on my live Cisco Asa. Need to know will i lose the accessibility of my device anyhow after configuring the password policy. Also what are the precaution i should take before executing the command • Step...
We setup our FMC (6.4) to be a Pxgrid subscriber to Cisco ISE. ISE has several agents inastalled to retrieve user-to-ip mappings. I can't seem to find any information about how often:1/ ISE pushes user to ip mappings to the FMC2/ How does an FTD retr...
Hello Experts @Rob Ingram @balaji.bandi I currently got AnyConnect VPN setup which is mapped through DNS to our Public Domain and its working fine. I want to setup another AnyConnect VPN which will be mapped through DNS to other Public Domain. I wa...
I’m looking for assistance with a rule and NAT policy Attached are the ports the phone company needs forwarded. I have the static IP of their system they are testing from and a user’s home static IP. Do you have an example of how the rules should be ...
Hi ALL Any option to enable stun protocol inspection for specific rules only in FTD2110If not do we need to enable it in global policy ... what are supportive commands to enable this protocol This is what we see atm > show service-policy inspect stun...
Hello, Exploring port-channel configuration on the firewall for redundancy but to my surprise, it not supported on FTD running version 6.3.0-80. require FMC to do it.https://www.cisco.com/c/en/us/td/docs/security/firepower/630/fdm/fptd-fdm-config-gui...
Hello, I have a customer that has a few ASA5510 in their environment. I realize these were end of support back in 2018, and have also read that the last software version supported on the platform was 9.1.x. Can anyone point me to information about ...
