Hello,I have two FP9300 devices and each of those boxes have an old security module - slot1 (two slots are empty).Multi-instance deployment is used + HA failover FTD pair was configured between both 9300 devices.Now I want to add a brand new security...
Forum Posts
Good afternoon, I've hit a bit of a wall so I'm requesting assistance from the experts. I have a single router with interfaces Gi0/1.1 and Gi0/3 placed in IN-ZONE and DMZ-ZONE respectively. The Zone-Pair with source as IN-ZONE and destination as D...
Hi Everyone, Does anyone know how to force the Cisco ASA to ping tools.cisco.com using IPv4? The WAN/External interface has both IPv4 and IPv6 configured and when pinging tools.cisco.com from the ASA directly, it defaults to IPv6, see below for outp...
Hello all, I need your support. How to configure the cisco firewall fpr 2120. Now it is configured in ASA mode
Resolved! FTD (firewall) Blocked or blacklisted
Hi all,I have configured an inbound access for exchange online to allow communication with internal VIP on ports tcp-25 and 442. I have the NAT rule in place and the policy to allow the traffic. However, I am seeing the traffic being dropped by SNORT...
Hi All,We have implemented a 1 leg proxy appliance inside LAN and NATed by firepower and then a PacketShaper bandwidth controller then to Internet. The internet bandwidth is 50Mbps.Strange thing is when download files from some specific website like ...
Resolved! Cisco ASA and ARP Entry
Hey everyone, Does the ASAs need to have an arp entry for a host/hosts in order to pass traffic through it (given that the access-list is allowed)? Thanks!
Hi,I configured port redirection with outside interface as below and allow tcp 4433 on outside interface.nat (inside,outside) source static <inside-serv> interface service tcp_4433 tcp_4433I could see packets are arriving on my outside interface with...
Hello I have FTD ( ip 10.2 ) >> Layer 3 switch >> Router (ip 10.1 ) From switch i can ping router and FTD interface, but from FTD i am not able to ping router interface and vice versa. ICMP is allowed. Any help pls
Resolved! ASA 5506-X
Hello I have ASA 5506-X and i have a problem : when i put this command : system install noconfirm ftp://192.168.1.254/ftd-6.2.3-83.pkg via xlight ftp server :===> it show this message : ///////////////////////////////////////////////////////...
hi,i'll wipe out a pair of ASA 5525x in active-standby to be redeployed in another site.i usually factory reset a standalone ASA.can someone confirm the steps below to reset the dual ASA:#write erase <<< FROM PRIMARY-ACTIVE FW#failover reload-stand...
Being new to the Cisco Firepower lineup I had a question regarding the 2130?It's my understanding that the you can run these in 2 modes:1) ASA on FP21002) FTD on FP2100 What are the benefits/requirements that one would run one over the other? Thanks
I am trying to forward port 8080 and 5544 towards internal server from the internet but its not working. Below is the configuration , if any one can help on this, internet = name of outside interfaceCCTV = name of inside interface object network NVRh...
Dear team,Its new setup. There are 2 FMC such as fmc1 and fmc2 but not in HA. 2 perimeter firewall (p1 and p2) and 2 internal firewalls(i1 and i2) added in the fmc1. fmc1, p1, i1 running from last few months where fmc2, p2, i2 were powered off. Recen...
I'm new here, I have a question because I don't have support from cisco because my account there isn't permission yet to open a case using my corporate e-mail. Was sent me a license from FirePower UTM to do activation, I've never done that So I'm try...
