HI I want to input data from Active Directory to ISE. Now I notice the issue is both ISE and AD cannot integrate well. Please see the picture below. The correct domain is abcd.local, but what i can see is ISE1.ise1.com instead of ISE1.abcd.local. Can...
In my lab, I previously had my FTD management interface on the same subnet as my inside network. The inside network is using the FTD Inside interface as gateway and everything was working without any issues. I recently created a separate management n...
I just started with an organization that did an ASA to Firepower conversion and then significantly modified and updated the Firepower configuration. The Firepower is not yet in production. Looking at the history of the ASA (a 5520), I think ages ago ...
I have an ASA 5555 and can access the internet thru it just fine if I am on the same network as the inside interface but when I add a next-hop to my test router to have another vlan access the same firewall, the traffic never makes it to the internet...
Hi Guys, Im pretty new to Cisco and im setting up an ASA 5506-x for the first time. I am not able to communicate between the sub interfaces on my ASA. Everything else is working fine. I have 3 sub interfaces: 1.vlan 10 (10.0.10.1/24) 2.vlan 50 (10.0...
Hi,I really need your help on a certain configuration.I tried deploying two FTD-2110 on my network.After all configurations, workstation connected to vlan85 whose gateway is patched on FTD_1 could not reach a workstation on vlan_10 whose gateway is p...
Good morning/afternoon/evening depending on where in the world you call home. Hoping this is an easy one for you all. My boss has asked me for a copy of the rule-set from our firewall. I did the copy start tftp command and have the start-up config ...
Hi, we have internal client talking to outside but I cant see ant traffic on FTD and Looks its communication is not reaching at that level and breaks at SSL handshake. Server guy confirmed me that ssl handshake is not completing. Can I capture ssl ha...
I have a group of Firepower 2100 devices all in a HA pair and have noticed this similar issue with each pair after upgrading. We were on code 6.2.3, and then performed upgrade path to 6.4 then to 6.4.0.9 All of this goes well however after some time ...
Besides VPN and Leased line Is there anything else besides this to prove the security?
I am having an issue with Connect my two Nexus Core switches to Firepower 2110 in HA. I have connectivity to the active firewall but I am not sure how I connect the standby firepower to the nexus switches. I different options ( L3 ports or VPC) and a...
Community,I am getting ready to pair a couple of 2140 FTD appliances into an HA pair. The Primary appliance has a multitude of subinterfaces that represent different networks/vlans on both my "Inside" Interface and my "DMZ" interface. However, I am n...
Hello,I noticed that I am unable to filter VPN sessions by username (Filter by AnyConnect Client). filter by anyconnect client displays list off all sessionsI can see e.g. user Adam Orange in the list with user name being Adam Orange,once I try filte...
I have an Older Cisco ASA 5585-X Firewall that I tried to upgrade the IOS. After reload I did a Show Boot and that is showing the New IOS. When I do a Show Version it shows that it is running the Old IOS. I also looked at the Configuration Registry ...
Hi I just want to find out if this is normal as it is a pain to the troubleshoot devices that hits my deny policy as every Dot1x sessions has a MAB failed session then a Dot1x session permit session. My switch config does specify to use Dotx1 first ...
