We are currently in the process of filtering and only allowing the necessary internet access for the FMC. Where would be the best place to set up this filtering? is it better to set up the filtering under the Access policy in the FMC (this allows th...
Forum Posts
Running some FTD 1010's with FMC and frequently get Malware Blocks, Threat Detected in Network File Transfer, for Google Chrome updates (and often Adobe Acrobat updates). Most recently is file names 92.0.4515.131_92.0.4515.107_chrome_updater.exe and...
Dear community, When tried to do a configuration backup of managed device ftd 6.6.1 HA and Cluster setup in FMC v6.6.1, I get an empty list of devices to backup from! Do you have any idea how I can backup the configurations of FTD's in this case? ...
Hello,We have had a Cisco Firepower 2110 replacement device sent to us. We have configured this device and it is up and running BUT we have a license issue.We put in our License code in to the Smart License Reservation and we have the error message, ...
If I purchase a 5 pack context license for my FPR1120 (FPR1K-ASASC-5), is it then possible to assign only 3 to the appliance and save the 2 for later? since it only supports a maximum of 5, and has 2 built-in. on smart licensing
Hello, I've been looking for the 5525-X end or life/end of sale and not found consistent results. The cisco.com page indicates it is available. There is a link for the EOL, but it fails with an error. I need to know the true EoL, EoS, and end of s...
I'm trying to establish IPv6 in IPv6 direct tunnels between Cisco CSR router and NSX-EP. I see phase1 negotiation succeeds but phase2 negotiation fails with following error:Jan 20 20:24:51.512: IKEv2:(SESSION ID = 28799,SA ID = 2):IKEV2 SA created; i...
Resolved! Cisco switch ACL never working problem
I am studying for Cisco CCNA exam and I have made myself a task of blocking access from one server to another. In my lab environment I use Cisco Catalyst 2960 switch (no routing used and all ports are members of same Vlan100), with two Vmware servers...
Hello I am trying to NAT Host 1 192.168.1.1 to WAN-1 (195.145.1.1) and NAT the Host 2 192.168.2.1 to WAN-2 (186.145.1.1), but when i try to config the PAT NAT for host 2 the nat only works when the WAN-1 interface are disabled . any ideas how to fi...
VPN/BGP session down log as well on show tech and facing high latency on the network. I have attached logs, please suggest what will be the issue.
# Issue: We have configured a user named HUadmin for the export of data from the FMC to Cyber Observer application.But we are getting below failed export data log, kindly assist us to fix this issue. # Asset Details as below:Product ModelCisco Firepo...
How do I configure an IOS-XE switch for SpannedEt andhernet for FXOS 2.10 and FTD 7.0? My CCL interface on the 4115 appliance remains failed and down. The 4115 has an amber light for the assigned CCL. The Portchannel 48 with a member interface eth1...
Hi!I have configured a 1110 before but it a much much lesser scale but that setup dont work here. Therefore my kinda noob post. I got 7 vm servers on a esxi but i want them on each VLAN. I am connecting the esxi server to the FW with 1 connection/eth...
I am looking to buy a second-hand ASA 5508-x (For a Lab) and it comes with the ASA5508-CTRL-LIC license, will this license provide the Control and Protect part for the Firepower?
Resolved! Upgrading 4120 FXOS
Hi,We currently have a pair of Cisco 4120 Chassis each running a couple of virtual FTDs and are planning on upgrading the FXOS firmware and FTDs (FMC is already at latest version). My question is regarding the FTD devices. When the Chassis FXOS is be...
