I’m using AnyConnect through my company VPN. It is set up to use a One Time Passcode, which was working fine.When I switched monitors, the One-Time Passcode window was somehow moved off the window. Now, when I go through the VPN connection process, I...
Forum Posts
Hello,Is there any method that deletes all zero hits rules in FMC? Script or anything? Thanks a lot
Resolved! ASA FirePOWER Reporting generate
Hi AllI'm using Cisco ASa 5516 and we have module FirePOWER.I'd like to know how do I generate traffic to see in this option.ASA FirePOWER Reporting.I appreciate your help guys.thank youAlex
Hello, I added an ASA 5555-X with FTD appliance to an existing network in transparent mode. The device cannot be configured with FDM because it is in transparent mode which is not supported by FDM. I currently don't have FMC. So the only option I hav...
Hello,I have tested the FPR 2100 HA pair switching time in lab, it took 10 sec.For our production environment, it is too long.I remember that ASA 55xx A/S switching is immediately. Do you have the same time?Maybe there are some specific settings for ...
I am tasked with migrating from a pair of 5585 (ASA, not FP), to a pair of FP4115. I am new to the FP platform, so I am a little lost, as this is very different from the old ASA hardware platform. FInding the proper info on Cisco.com has proven diffi...
Hello. Any ideas anyone?The VTY ACL is severly restrictive on this closed private ip network and set to log every connection. The SSH session initiated from my machine to sw mgmt ip creats a successful connection. However, below sample log is seen: T...
I have a FTD module (SM-36) inside a 9300 chassis being managed by a FMC 4500 Is it possible to create a rule, for example, that says, if port scanning is detected, block the source IP for a period of time? Say 30 minutes? If not, are there API's ...
Greetings all, I wonder if q someone could give me a hand with this.I'm having problems with synchronization of the time of my microsoft NTP and ISE appliance, making and reviewed the internet and tells me that I have to make certain settings on the ...
Hi,Have a very simple query not able to get it..PC1 > -------Inside interface FTDv----outside interface FTDv------> PC 2In this topology i can ping from PC1 to PC2 through the firewall but not the other way around ? I have not static routes configure...
Resolved! diffrence between BVI and inline set?
so both seems grouping of interfaces , BVI can provide connectivity by being the gateway , inline set can provide connectivity by connecting to another physical interface . what is the difference and why would i use one or the other?thanks
Hi all,I am trying to migrate Checkpoint FW to FMC using the Firepower migration tool.It seems that the Checkpoint configuration has been extracted properly from secure gateways and smart console but I get an error message during the parsing phase an...
Anyone else having issues with urls being incorrectly classified as ultrasurf after vdb update 347? We are seeing a large number of urls now classified as ultrasurf including new sites and vendor update sites. Im not surprised really. This is the fou...
We need to change TLS 1.0 to TLS 1.2, We will like to do this for our external and eventually our internal (client) If we change the Server from 1.0 to 1.2, will this break any services that are facing the WEB that only accepts TLS 1.0. We have Cit...
I have 2 Cisco Firepower 2110 NGFW in High Availability (HA) (Active / Standby). If the company has 250 users, do I need to purchase one Cisco AnyConnect 250 User Plus Perpetual License or 2 Cisco AnyConnect 250 User Plus Perpetual licenses?
