I have a Firepower Management Center deployed with some basic URL filtering enabled. When I apply URL filtering via IP, the filtering applies, but when I attempt to filter via domain user instead, the filter never applies. I've created the Realm, ...
Forum Posts
We recently had a major issue where the FMC deleted a rule apparently by itself ! FMC1600 physical device running 6.6.1Senario, I deleted some out of date office IP's & associated rules. Applied policy to FTD's & a major incident became evident. Afte...
Here is part of the config:new firewall (without config )Just Ip management ASA Version 9.15(1)1 ssh stricthostkeycheckssh timeout 5ssh version 2ssh key-exchange group dh-group14-sha1ssh 0.0.0.0 0.0.0.0 mgmt!interface Management1/1management-onlynam...
Hi All, Hope I have placed this in the right location.I have upgraded our FMCv from 6.2.3.16 to 6.6.1, however, since the upgrade I can no longer deploy to the appliances as the deploy button is greyed out.I can confirm appliances run 6.2.3.15 code s...
i am using ASA 5508X firewall.so is this device capable to stop all types of DDOS attack? like Volume Based AttacksProtocol AttacksApplication Layer Attacks or we go for some other device like arbor Ddos Protection for datacenter . please suggest ...
Hello,I found in cisco documentation that BFD is not available on OSPF, only BGP.So I use BGP protocol on my fw FTD 2130.I use FDM to configure this FTD fw. In the BGP part, I activated this line:"neighbor 1.1.1.1 fall-over bfd single-hop" When I run...
I am looking for a way to downgrade SRU Update on FMC. I have two FMC, one has higher version than other. Due to the requirement, I have to downgrade the update to match with other. I cannot upgrade the lower version. I do not see an option to downgr...
Resolved! FTD upgrade problem
I recently installed a FMCv on VMware (v6.6.1) and 2x 2110 FTD units which came with 6.3.0.5. I expected updates for the 2110s to appear in the FMC so I could upgrade to 6.6.1. It keeps saying "no updates available". FDB and GeoDB updates are workin...
Hi everyone! I am trying to use RADIUS,DNS and NTP Services using Management Interface from Firepower 2110 ASA image. This interface has communication with the corporative network where the respective Servers reside. Below the configurations from F...
Hello,I was just wondering if anyone knows what URLs are reached out to by FMC for URL filtering automatic updates as we are getting a URL Filtering Download Failure we are using 6.4.0.11 from documentation it seems like Automatic URL updates will us...
Hello, I have a PIX-515E and I will install a new Firepower managed locally. Is there any possibility for automated migration or the only solution is the manual one. In the manual what should I be aware of? Thanks and regards, Konstantinos
Hello everyone, I need help upgrading Cisco FMC VM. Current FMC version is 6.2.2.5, from cisco upgrade path doc I found that its possible to upgrade directly to version 6.4.0. Since we have two CISCO ASA 5515x devices in Active/Standby setup, should ...
Resolved! FTD Source Interface for LDAP queries
Hi all, Is it possible to change the interface at which a FTD sources LDAP queries? I am trying to use a LDAP server which is only reachable over a S2S VPN to the main office from the remote branches, and it does not seem to work. Some remote br...
Resolved! IP SLA/PBR behavior for Firepower
We have an FTD with two ISPs where Guest traffic PBR policy uses the backup circuit. I am wondering though, is it possible to use IP SLA in conjunction with PBR so that if this circuit has issues, it falls back to the other circuit? Or is the PBR alw...
