Hi, is there any possibility to login at FMC/FTD with generated SSH keys?We generated a public/private key pair and placed the public one through expert mode on the FMC. It seems that FMC isnt using this method and we dont know how to change it.Any i...
Forum Posts
Hi All, How do I know what SNMP OID of Traps on FTD 2140/4115 interface up / down and FTD reboot? Nicholas
Hello peers,I have a customer who discovered that their internal servers, ones that were NATed to a public IP address and had specific ports open for access from the internet, eg HTTPS or SMTP, were being bombarded by all sorts of internet traffic on...
When a user connects to the remote access VPN. The username in the connection logs shows as "Not Found" and I can't use ACP to control traffic. It use to work back in an earlier version from FMC 6.2, but since stopped working even with the latest rel...
Resolved! Making changes on the interfaces on the Secondary Standby FTD while Primary FTD is running
We have 2x 2120 Cisco FTDs(managed by FMC) in the DMZ. Primary/Active FTD has a single L3 link to EDGE 1 and Secondary/Standby FTD has a single L3 to EDGE-2 switch. We are planning to deploy VPC on the EDGE switches where each FTD is going to have t...
Hi Gents, We just upgraded an HA Firepower (FTD) 4140 to 6.6.4 and the said alert keeps popping up.Although I've read where to disable this, problem is, this is a highly secure firewall and completely isolated, meaning no internet access at all.When ...
Resolved! Firepower Backup
Hi, our setup is;ASA 5555-x active passive HA pairFirepower module installedUsing FMC for FP management My question is, what is the best way to backup FP specifically for an upgrade project where I can easily restore FP if I have issues with the upgr...
HI! I need help! I have a Cisco Asa 5585 Firepower in a vcenter (vmware 6.0) and I want to make a backup with Veeam Backup but when trying to make the backup I get an error message "processing error vddk error 14009" by veeam, which does not He lets ...
HI Guys.Quick question Is it possible to create a SPAN port on a C9300 and configure port (monitoring) so it's not possible to sent data through it only recieving data? Thanks in advance /Jeppe
If I create a new file or IPS policy and need to apply it to hundreds of Access Control Rules, is there a way to do this in bulk in the FMC interface or do I have to go one at a time through all the rules? I'm guessing that someone can code a way to...
Hello all,Is it possible to migrate a current FTD appliance that is a standalone device to be managed by FMC that's also currently in production? Or do I need to configure all the objects, NATs, rules, etc. on the FMC first then wipe the FTD and sta...
Resolved! Malicious DNS address
Hi Buddies, Could help me figure out what is the meaning of these logs in my router? I'm worried that this could harm my network. Thanks.
Would anyone be able to provide an example of an ansible yaml file with basic cmds under asa_config module, I have managed to get the asa_command module working. Connection from control node to ASA is via SSH.I have tried google but found nothing tha...
Resolved! Obtain Updates for ASA
Hi, I'm researching my plan to install updates on our ASA 5555-xI can download the ASDM and Firepower modules direct from the Cisco website and the updates for the ASA aren't available. Can I download them from anywhere or will I need to contact a TA...
Hi,We noticed 'high CPU usage on the ASA 5555-X series firepower device. We checked the configuration and logs and there are no symptoms of CPU usages. Could someone please advise? Model : Cisco ASA5555-X Threat Defense (75) Version 6.6.1 (Build 91)C...
