I am re-imaging two ASA-5545Xs with a vFMC from 6.3.0.5 to 6.6.5. I recovered the module and installed the boot image file without any issues however, when trying to download the firepower software package via FTP, it repeatedly fails at random perce...
hello everyone i have cisco fmc 6.7 and ftd 2110,is there any hotfix for log4j vulnerability that relased for fixing it thanks for your kind replay
I currently have 4 ASA 55xx w/ firepower devices in my network topology.the devices are registered in FMC post VPN connection.my FMC is on my internal network on site 1. (192.168.1.3)each one of my ASAs do a site 2 site tunnel to the main office via ...
Hello. I installed 2 ASA 5506-X and activate firepower same security policy.But only 1 ASA 5506-X has problem. When It is using firepower, ASA internet loss briefly (5~10 seconds) about every hour.I removed firepower, it was OK. So I tried firepower ...
We can unable to access the module via SSH and tried accessing the session hardware 1 from the console and we are getting no response. Anyone faced this issue any probable solution that we can try through ASA CLI. ?? XXXXXXXXXXXXX/sec/stby# sh modul...
Hi all,I moved to a new job couple months ago, and they are using CISCO FTD's. I am a PaloAlto guy and still learning about FTDs, and to be honest I am not a big fan of FTDs as they are not flexible and stable as Palos. Anyways, whoever built those F...
I am reading the ENARSI chapter on CoPP, and it had just occurred to me that if we are protecting the CPU from unnecessary burden/ attacks, where are the ACL's processed in the router? Are the processed in CEF at the data plane? I cant seem to rememb...
In FTD, while the file is being analyzed in the sandbox by ThreatGrid, when happens to file in transit?Please let me know if this is correct:If the file policy rule action is "Malware Cloud Lookup", I believe the file is sent to the end user and a ma...
Hello everyone. Please, someone help me?I'm a problem for installation of the image cisco any connet in FTD Firepower due to the use 100% of partion /dev/root: Filesystem Size Used Avail Use% Mounted on/dev/root 3.7G 3.7G 0 100% / I alread clean sev...
Hi, I need to create Outside ACL with Office365 wildcard domain in order to filter outside -> inside connection. Is possible to do that? I know that 5525X does not support Wildcard Domain.Thanks a lot
i have the firepower 1120. i configured my device for access to internet from DMZ zone and to access to my web server, but with default action allow. when i set default action BLOCK, and i create NAT: manual for accesss dmz zone to internet and autom...
I'm trying to use local AAA to set up credentials for console and VTY. After applying the following commands I can no longer log into the switch. It disconnects me after several failed attempts. Can you tell me what I am doing wrong? aaa new-modelaaa...
I am starting to convert our ASA 5516x over to FTD image. Since we have 12 different sites I have to setup Site-to-Site VPN for connectivity. This is simple and I have it working, however I am wondering if I can put all the NAT objects into 1 Group...
Hi I'm trying to configure a site-to-site VPN between three routers one of which is passive with multiple ACLs and I'm having a bit of a meltdown. Some of the ACLs work , the VPN works If I don't apply the ACLs as soon as I apply the ACLs it stops w...
Hi Just a simple question when using numbered ACLs is there any significance to the number or should it just be within the specified range for your class of IPs? For example ACL 110 should it be used for a significant purpose? Thanks in advance
