Hi does anyone know of any good documents or URLs that provide best practice guidance on FMC deployment and configuration? The only one I've found is the FMC Sizing Guide https://salesconnect.cisco.com/#/search/Firepower%2520NGFW%2520FMC%2520Sizing...
Forum Posts
Hello,I recently got a Firepower 1010 for my home lab and was testing the VLAN interface feature that I previously used on my old ASA 5505.I used my 5505 as a DHCP server on the Inside network and had the DHCP server enabled on my Inside VLAN interf...
Resolved! Looking for ASA 5510 upgrade software
Hi,I'm looking for ASA 5510 upgrade software that I could not find on https://software.cisco.comI know that the product is en end of life but is it normal that we could not find upgrade files anymore ?regards,
Good afternoon!How to configure different DNS for different interfaces on Cisco Firepower 1010 Threat Defense (Software 6.6.5-81)?Via GUI i can add only for data (can't split) and management interface.is it possible to do via CLI?
Dear Experts, Is there any design guide or sizing guide published by Cisco for sizing their DC firewall for large scale data centers?
Hi,I am facing a problem i can reach remote site hosts ,from remote site some network cannot reach my network .it was working and there was no changes so when I run sh crypto ipsec sa it does not show the interesting traffic How to verify...
Hi,logging monitor debugging enabled terminal monitor on I want only output of only debug crypto ikev2 platformbut all other traffic also showing , how can I filter ?Thanks
Hi All, I am looking for a few more details regarding the Cisco FPR-4140-NGFW device, which I cannot explicitly find in the hardware guides. The documentation says that apart from 8-fixed 1G/10G SFP ports, there are 2 network modules as well. I wante...
I am able to ssh inside IP address from a seaprate SecureCRT session. But when I ssh from a Cisco isr4331 router i am getting following error [Connection to IPADDRESS aborted: error status 0]. I did confirm Data Interface is allowing Inside interface...
Resolved! See what would be blocked with new ACL's
I think I have a relatively easy one. Currently our ASA 5515 with firepower services is only allowing browsing to trusted geolocation for internet browsing through Firepower services at our corporate location. We want to change that, and only allow o...
Hello. Our Smartnet contract expired and we bought a renewal license, our reseller sent us the new license that includes a PAK, when i try to activate the license and assign it to the ASA, it asks for a license key and gives directions on how i can f...
Resolved! Unable to SSH to ASA 5525-X
Hi,I have four admin users on my ASA all with level 15 access but not of them are able to SSH to my device.I have checked SSH settings and it is allowed. Is there anything I could have overlooked? I'm sure this has worked in the past as the device is...
I have 3 insides : Inside-01 : 172.16.1.0/24Inside-02 : 172.16.2.0/24Inside-03 : 172.16.3.0/24 From Inside-03, i can ping all range in Inside-01 From Inside-02, i can ping all range in Inside-01 except one ip(172.16.1.121) i disable all firewall in w...
Dear community, Cisco User Agent does not authenticate users. The problem is intermittent and sporadic, and resumes to work properly after restarting the FMC console or the FUA agent. Note: Firepower version is 6.6.1 and user agent is v2.5.1 Does a...
Resolved! registering FTDv Azure to FMC on-prem
Hei,I am trying to register FTDv in Azure to FMC on-prem over express route. I am getting error " "Discovery failed due to internal error contact TAC". I also see communication established messages. Used same configure manager add IP key nat-id on bo...
