Hi,I currently have 2 Cisco FTD 2110 devices in a HA pair. Both FTD and FMC are running 6.4.0.3 code.My primary ISP assigned a /27 public block (100.100.100.0/27 for example) being leased to me, I do not own them.So I was able to implement some one-t...
Forum Posts
Hi all, I'm not fully familiar with ASA's but I'm really stumped and need help. I have a HA pair of 5510's with a current ISP connection in them. We now have a new ISP connection which I have connected to Eth0/3. The link has been provisioned as a...
I am in the process of converting to an MPLS baased network using BGP routing. My network management station is reporting traps with OID ..1.3.6.1.2.1.15.7.0.2. I have tried using the SNMP object locator on the Cisco site for this but it cannot find...
Resolved! ISE 3.0 TLS v1.2 enable.
Hi, To enable TLS 1.2, I only need to uncheck 'Allow TLS 1.0' and 'Allow TLS 1.1' on Administration > System > Settings > Security Settings? How do I check if TLS 1.2 is active after disabling 1.0 and 1.1 ? Thanks
my FTD 4100 show Running version 6.2.3.16.59 and start-up version is showing 6.2.0.363. Any clue or issue , as we are planning for FXO upgrade..
Resolved! Licensing FMC 4100
Hello everyone,I have the following licensing questions for the 4100 platform plus FMC.Activation of multiple instances. Does it require a license?To form a Cluster between 2 Cisco FTD 4100. Is any special license required?I appreciate your time in a...
My SSL decryption policy is working but the FTDs are experiencing issues trying to decrypt sites that appear to be protected by cloudflare. For example, if I go to yahoo.com, I can see the certificate in my browser was intercepted by the FTD and the ...
Hi Community! I'have some issues with monitoring cisco firepower 2100 with snmp in Zabbix. I configure well all snmp in FMC, and i use snmpwalk v2c to poll all interfaces in my zabbix. But the problems, i get others interfaces like : Can you hel...
I was told to configure firepower for our cisco asa 5525-x and thought i'd have to install a module, but this guy is telling me it's embedded into the firewall.. I haven't found anything on how to configure this though and am confused on how you woul...
Resolved! FTD Managment Interface DOWN/UP
I have a newly upgraded ASA 5516 that was previously running ASA OS and is now running FTD. For some reason the Management1/1 interface is admin down, line up. Interface Management1/1 "diagnostic", is administratively down, line protocol is up Hard...
For our first rule in our Access Control Policy, we've got a geolocation block on incoming traffic from country X. There is no corresponding rule for outgoiong traffic to country X, however. So, as I understand it, anyone in country X trying to initi...
Hi All, I have observed a internal to internal machine traffic and observed the event IOC_STATE_RECORD on my SIEM console. This event flagged by the cisco firepower center (FMC), checked the traffic logs between the these two internal machines. Obser...
Hi, Currently have a 3rd party Firewall for Internet Access in a simplified view like below with transit VLAN's spread across 2 sites and as such can leave via either site but with a preference for the local, outbound traffic NAT's to the outside int...
Hi AllI was wondering if someone enables and uses the FirePOWER module Cisco ASA without FMC.I didn't find documentation clearly about it.Any help is welcome.CheersAlex
My client is asking for a list of all of the users that have logged in via AnyConnect in the last 60 days. Is there a way to do that through the FMC? Or do I have to set up external logging on ASAs/FTDs to get that? Or is there a better way to obt...
