Network Security

Resolved! Firepower to VPC with ospf

Hello, have anyone had a problem with a portchannel vpc from to nexus connecting to asa Firepower?i can ping between the 3 device but im not able establish an ospf adj between the Firepower and the nexus. NX1 --VPC--NX2| || p...

ASA 5525 ACL Transparent mode ACLs not working properly.

Hello all,I am trying to configure some ACLs on my ASA 5525 and am having issues with certain ACLs not being hit.What I dont understand, is why line 1 is not being hit as I can see the info still being passed via the syslogs in Splunk. access-list ou...

Firepower Intelligence Sources Hung Parsing

Under Intelligence -> Sources I have some external TAXII sources that are hung on parsing. I was able to add them back in and the new ones are processing correctly. I have rebooted the FMC but they are still hung. I cannot remove the hung sources,...

Cisco ASA 5505 vpn-sessiondb no remote route

Over the last week, my tunnel to remote site stops working, random times. Very new to ASA/Security, i come from the routing side. After looking closely at this for a bit I noticed on the show command i don't see the remote route.IPsec:Tunnel ID : 40....

Resolved! Cisco User Agent End-of-life - FMC virtual - version 6.6

Dear community, I am planning to deploy a Cisco FMC virtual and one of the questions I currently have on my preparation list is on Cisco User Agent. I have seen the red pop-up notice on other FMCs that Cisco User Agent will soon be deprecated and it...

ASA-5506-X Firepower SFR loop

I recently got an ASA 5506-X and uninstalled and installed FP 6.2.3 fresh. I also installed ASA software 9.9.2 & ASDM 7.9.2. I also updated the Rommon to 1.1.18. from the doc's I read, this should all be compatible, but the SFR now goes to Init->UP-...

ASA-5555 SNMP showing two system memory entries

Hi, When retrieving the 64-bit memory OID's from an ASA_5555 (system context) I get a response with two system memory entries both also showing used and free memory.This is the only ASA type where I see this.The output in "show memory" and "show mem...

Resolved! Cisco ASA packet capture

Hello.Is there a way to capture traffic sourced from the ASA itself? For example, how can I capture ICMP unreachable message being sent from the ASA to the Internet? ASA-------OUTISDE-INTERFACE---------INTERNET Which ingress interface should I choos...

FTD 6.6.0.1 - SIP Inspection Error - "Via" header incorrectly re-written

Hi,I'm not sure if this belongs in the Security, or the UC sections, but here goes.The scenario is a CUBE gateway on an internal IP address, communication with the ITSP over the Internet via an FTD firewall. The FTD has a one-to-one NAT so communica...

Can't apply ssh access list to FTD management interface

When running configure ssh-access-list 1.2.3.4/32 to my FTD, it adds it, but it is not removing the default any any statement on the bottom of the ACL, making the ACL useless. How do I delete entries or clear the list to add specific networks? Runnin...

Resolved! Firepower User Agent Communicating Ports on AD Firewall

Hello, Is there a guide that states the ports that need to be open in order for the user agent to communicate with an AD controller. I am interested in the firewall of the server. Tanks and regards, Konstantinos

ASAv10 AWS Firmware Upgrade

Hi Support,Kindly advise how to upgrade ASAv10 version 9.9(2) to latest version. Please assist to provide the image too. Regards,Sandar

AnyConnect DTLS TLS 4125 5585

AnyConnect remote to multiple location headend vpn, when different location users reach to multiple DC servers got application errors randomly, especially after application up long time with large search on users pc, hard to capture the error no matt...

Resolved! Cannot Create FTD container instance on 4140

Dear All, We are facing some problem with creating FTD container instance on 4140 Platform ...Attached here is error message.. Appreciate your prompt support ..... Regards

Upgrade FMC to 6.7, what will happen to 6.2.3 FTD devices?

HiI want to upgrade our FMC to 6.7 to upgrade our DC FTDs to 6.7 leverage the new IPSEC VTI functionality which was sorely missing,However, i've found that FTD 6.2.3 is no longer supported to be managed by FMC 6.7. We have 30+ devices which are on 6....

Network Security

Forum Posts

Resolved! Firepower to VPC with ospf

ASA 5525 ACL Transparent mode ACLs not working properly.

Firepower Intelligence Sources Hung Parsing

Cisco ASA 5505 vpn-sessiondb no remote route

Resolved! Cisco User Agent End-of-life - FMC virtual - version 6.6

ASA-5506-X Firepower SFR loop

ASA-5555 SNMP showing two system memory entries

Resolved! Cisco ASA packet capture

FTD 6.6.0.1 - SIP Inspection Error - "Via" header incorrectly re-written

Can't apply ssh access list to FTD management interface

Resolved! Firepower User Agent Communicating Ports on AD Firewall

ASAv10 AWS Firmware Upgrade

AnyConnect DTLS TLS 4125 5585

Resolved! Cannot Create FTD container instance on 4140

Upgrade FMC to 6.7, what will happen to 6.2.3 FTD devices?

Cisco FTD/FMC IPsec Tunnels: “Up” Doesn’t Always Mean Working

Cyber Vision Sensor version

FTD 7.2.5.1 → 7.6.2 Upgrade sftunnel TLS Failure — Certificate Mismatc

Suppress Closed Responses on Non Existent TCP/UDP Ports

FMC Upgrade to > 7.4 || 7.6

FTD HA Pair - Config Sync Status: What does "Sync Skipped" mean?

FTD Route Based VPN question

FTD over Remote FMC - 2 FMC Setup

Cisco Firepower 1010 - Issue with Software Image

Beware: FTD 1120 7.0.8 hotfix is not working