Hello All, I am configuring a new Firepower 2140 appliance and in order to connect it to our FMC I have first to create a VPN, through the FTD 6.3 management interface, to reach the FMC console!I have managed to create the tunnel and the NAT to go al...
Forum Posts
Hi All, I have purchased a couple of these devices to replace the old ASA 5505's in remote sites.The devices have been configured with FMC. The remote sites may only have 1 staff PC so that will plug directly into the inside interface on these firewa...
Resolved! Cisco ASA gratuitous ARP
Hello, Does anyone know how to force Cisco ASA to send GARP for NATed IPs? I'm using proxy arp and the ARP entries on the upstream device do not refresh after I change failover MAC address. The only way to fix this is to clear ARP on the upstream d...
Hi gents, We're going to be upgrading a HA cluster of Firepower 4140 along with their standalone vFMC, and after reviewing all documentation two doubts remain in the back on my head: Current versions:vFMC 6.3.0FXOS 2.6.1FTD 6.3.0 Target vesions:vFMC:...
Hi Team, I am using Cisco Firepower 2110 with FMC version 6.3. I want to block only "Tiktok " application in my Firepower firewall, could you please guide how can I block Tiktok application. So that no one is able to watch the Tiktok video using tikt...
So I posted a question last week with some questions about Cisco routers and VPN's. I already have my CCNA in routing and switching, but I'm starting to work with more VPN's. I've set up an IPSec tunnel between two devices before, but as I'm starting...
Resolved! FTD password expiration
Hello, I have FTD 6.6.1 managed by FMC and I would like to ask if I can set the expiration time for the admin user of the SSH I give the command and it says I cannot change the current user Thanks and regards, Konstantinos
Hi everyoneI have this confusing problem with clustering two FTD 4100 series, when copying the cluster configuration from the first one to the other one, it stays at this state all the time and not give even an errornotice that I have both FTD have 2...
Hi, I've rolled out dot1x via Cisco ISE onto a customer user network. The user access switches are 2960X. The version of ISE is 2.7 Patch 2. There are a few issues, specifically with a group of users. I want to created a new policy set for one user i...
In one of my firewall , I am able to see that the failover state is showing as failed : Other host: Secondary - FailedActive time: 0 (sec)slot 0: status (Up Sys)Interface inside: Normal (Monitored)Interface outside : Failed (Waiting)slot 1: SFR5525...
I'm attempting to implement Aruba Central's Cloud Guest feature as we replaced our Cisco APs with Arubas, I've been battling this issue with Aruba Support for a while and they still beileve it's an issue with our Cisco ASA Firewall and their websites...
Resolved! Cisco FTD static route leaking
I have an upcoming project that requires the configuration of a FTD, I'm new to FTD so this will be a learning curve. From the research I've done you can create static route leaking from one VRF to another VRF on the FTD, does this route leak create ...
Hello, I am having an issue with ASDM loading the configuration of my ASA 5585-X I get the following messages/errors I have included some output from some commands that might be helpful. I have searched forums and everything else but I cannot find...
I configured my IPS policy by filtering by maleware and selecting "Drop and Block" for all snort rules. I have this event coming up (See atttached) matching one of the rules. Its the internal DNS server it seems being flagged as the attacker and even...
Resolved! Rules per page
Can I change the number of access control policy rules displayed per page in FMC? It seems to default to displaying only 50 rules at a time, which is a bit low.
