I want to redundant the interface of the ASA.The equipment is a Firepower 1140.There is no interface redudant command.Is there a good way??
Forum Posts
Hello,I am facing an issue with SSH/HTTPS management access on a Firepower 4100. After un-boxing the device, I consoled in and ran through the initial setup. I assigned the IP, subnet, hostname, default gateway, and IP blocks on the interface. I a...
Hello for everybody. Not so far away we updated our FMC and FTD from 6.4.0 to 6.6.1 software version. Today, when trying to add auto nat rule for the test network, I faced the following problem. Auto nat rules can not be configured on more than one s...
Hi All , i have installed FTD 6.2 on Cisco ASA 5508X , and by mistake i have selected FDM during installation . is there any way to convert it to FMC. Please advice
We are trying to have Duo Proxy use ISE to authenticate and not be a proxy to AD or another Radius Server. Has anyone gotten this to work before? Solution: Anyconnect VPN with DUO MFA
I have an active/passive ASA cluster. From the shell of the master unit, is it possible to SSH over to the standby unit?
Resolved! One page in ISE is keeping loading
ISE2.7 can work well. but suddenly only one page cannot be showing up and keeping "loading" status. Please see below page.Thank you
Hi! I have a question regarding DDNS and FTD. We get a DHCP address from our ISP on our outside interface which we're using for our VPN clients. We want to bind this address to a more convient name for example: vpn.example.com. I've read about DynD...
Dear community,we have recently noticed several false positives on our IPS based on Firepower Managment Center, in particular signatures: MALWARE-OTHER Win.Trojan.FANCYBEAR variant binary download attempt (1:56933:1)MALWARE-OTHER Win.Malware.Ursu-982...
Hi team,The FMC is generating the alert like below.SECONDARY (xxxxxxxx) FAILOVER_STATE_STANDBY_FAILED (Check peer event for reason)Both FTD 9300 are in HA over a port-channel. I have checked both port-channel physical interfaces are in matching the ...
Hello Communityi am tryig to do PBR flex config in my lab environment . 1. I have 2 internal subnets 10.1.1.0 /24 and 192.168.1.0/24 2. i want 10.1 should take isp-1 and 192.168 should take ISP-23. did extended ACL and tried Flex config , but getting...
Hello everybody, a cusctomer has a Firepower 4110 running 6.6.0 and configured by FMC.I have a pricipal question:Is it possible (and if yes, how) to let pass a certain UDP broadcast from one IP network to another when the FTDhas own interfaces in bot...
Hi there,We've got pair of ASA HA 5525 firewalls (v 9.12) configured with 3 interfaces (Outside,Inside, and DMZ). We would like to configure NAT rules for a window virtual web server (IIS) that will host 3 websites (each website will have public IP a...
Resolved! Firepower Policy and Domain Question
Community,In the FMC, is there a way to move an Access Control Policy that was created under a subdomain into the "Global" domain? Or do I have to completely recreate the policy in the Global Domain view? When I try to copy the policy it just places ...
I've read through Cisco ASA documentation and saw that IPv6 multicast routing is currently not supported. Was wondering if this is a work-in-progress or is this a feature that will never be offered for ASA 5500-X series firewalls?Also, since IPv6 mul...
