Network Security

FTDv 6.3.0 Management IP keeps unsigned

Hi all, I'm testing a new lab with FMCv and FTDv on 6.3.0-83 and having Management IP setup issues on FTDv. Followed the regular OVF deployment and setup on 1st login but cannot get fixed on interface. Tried to update se configure network ipv4 a...

Resolved! I don't have "ASA FirePower Configuration" menu in ASDM

Hi I don't have "ASA FirePower Configuration" menu in ASDM. I have already configured IP to management 0/0 port 10.226.24.181 also to SFP manager 10.226.24.130. I can ping 10.226.24.130 from ASA CLI and have tab in ASDM (with https://No DC Configured...

asa primary unit as active after reboot

Hi All,in document 'Cisco ASA 5500 Series Configuration Guide using the CLI' it mentioned, If a unit boots and detects a peer already running as active, it becomes the standby unit.My situation is FW1 is set as primary, FW2 is set as secondary. When ...

Resolved! FTD Replacement

Hello, I have FP 2110 running FTD image, I should replace the appliance as I received new one, can you please advise me how I can replace the appliance and connect the new FTD, I mean is there any document or shall I first Join the FTD to FMC and how...

What is the impact of "no names"?

Hi all,I have 2 questions:We have our ASA filled with named objects, but sometimes you want to view a access-list or anything without the named objects but the real IP addresses. I heard of the "no names" command but never tried it. What is exactly t...

Multiple outside interfaces on ASA 5545.

Hi there! I need create two different tunnels IPSec on ASA 5545, I try to do this with ASA 5545 and Router 887. Can I do this with two interfaces in each device? Outside interface1-----Tunnel IPSec1----Router interface1 Outiside interface 2----Tunn...

ASA 9.8 - PASSWD still necessary?

Given that there is no longer a default login password, if Telnet authentication is not enabled (via AAA), there is no telnet mgmt access permitted via the 'telnet' command, and there is no desire to use Telnet for anything, is there still a rea...

Resolved! FTD in Transparent Mode Management On Box

Dear All, I need to configure a FTP 5516-X in transparent mode.But after convert to transparent and enable de local management (on box). The output showed the message:Local manager does not support transparent firewall mode. The sollution is use FMC ...

sh capture , <mss 1380,nop,nop,sackOK>

Hi,I am trying to connect a pc to the internet using the pix fw. The ip will be nated before going out to the internet.Now I face a problem with the access. On the pix I found the message as :192.x.x.x > 202.x.x.x S 23213411:124122132 (0) win 65535 <...

ASA 5545-X SFR Firepower Module not logging 'would be blocked' in connection events

Hi All Hope you're well We have an SFR/Firepower SSD installed in an ASA 5545-X in monitor only mode: class-map SFRmatch any policy-map global_policyclass inspection_defaultinspect dns preset_dns_mapinspect ftpinspect h323 h225inspect h323 rasin...

5510 to 5512 Migration

Migrating from 5510:ASA Software 9.1(7)32Device Manager 7.8(1)150 to 5512-XASA Software 9.8(4)Device Manager 7.12(1) I am hoping that there's a simple way to capture everything in the current configuration, including pre-shared keys (that I don't see...

Cisco ASA 5510 IOS update

Hi All, We have planned to upgrade ASA5510 to ASDM 7.12.1 and 9.9.2. is it ok to upgrade to above version. Please help me to sort it out this issue Regards,Senthu

Intrusion policy for huge number of ACP rules.

Dears,I have a project to migrate an ASA to FTD but i am worried about the FTD performance due the following reason:The Access-Control policies number in the ASA are huge around 10000 line, so when i do the migration to the FTD i will have a huge num...

SSL-VPN CORS Policy

hiwe have 2 ASA firewalls:1- Cisco ASA 55502- Cisco ASA 5585-Xand we deployed ssl-vpn on both of them when one of the pages deployed by ssl-vpn are opening in the asa5550 it is working great but when we open the same page in the 5585-x we are receivi...

FTD API: How to clear conn?

HelloIm trying to clear connections using FTD api /action/command passing as body a json like{ "commandInput": "clear conn all", "type": "Command" }it does not work for me...reply is{ "error": { "severity": "ERROR", "key": "Validation", "messages": [...

Network Security

Forum Posts

FTDv 6.3.0 Management IP keeps unsigned

Resolved! I don't have "ASA FirePower Configuration" menu in ASDM

asa primary unit as active after reboot

Resolved! FTD Replacement

What is the impact of "no names"?

Multiple outside interfaces on ASA 5545.

ASA 9.8 - PASSWD still necessary?

Resolved! FTD in Transparent Mode Management On Box

sh capture , <mss 1380,nop,nop,sackOK>

ASA 5545-X SFR Firepower Module not logging 'would be blocked' in connection events

5510 to 5512 Migration

Cisco ASA 5510 IOS update

Intrusion policy for huge number of ACP rules.

SSL-VPN CORS Policy

FTD API: How to clear conn?

Hearty congratulations to the December Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

Firepower 7.2.1 - Issue with the FlexConfig Text object override

Private VLAN's interaction with ESXi and firewall

Packets appearing in ASP DROP?

What is PID when we try to integrate with Cisco API's

Broadworks Product ID

FMC new local admin cannot console or SSH

FMC API - can not associate a prefilter policy to an access policy

What is the result of placing, on ASA outside int, ACL...

On ASA5525 with vanilla setup, need to place ACL on outside int?

CSR 1000v ACL syntax-- use wildcards or masks?