Sir,I have the below case:PC -> Switch -> ASA5510E0/0 is Public with security level 0E0/1 is Inside with security level 10E0/0 IP is 10.10.120.2 (switch VlAN gateway is 10.10.120.1)E0/1 IP is 10.10.130.2 (switch VLAN gateway is 10.10.130.1)PC IP is 1...
What is exact difference between FPRxxxx-ASA-K9 with FPRxxxx-NGFW-K9, and for launching IPS what license do I need?
Hi AllOn Firepower firewalls, how often does the IPS update?I can see timers for the "security intelligence" feeds, default 2 hours, but nothing for the intrusion side, I can see some settings under system > content updates, is this it? if so, it loo...
Hello, Does anyone know what is the difference between below commands? I tested both, found out outcome was the same. Only thing I found was getting the below warning when I execute figure1.0 command, %PARSER-5-HIDDEN: Warning!!! ' aaa authenticati...
So I am working on getting our firepower for our company setup. So far got things set up for the most part. Now I am just getting connectivity over site-to-site and make sure I can access servers and services throughout. I was adding rules for our XD...
Hi All, Pruchase threat defense, malware licenses and need to implement it in FDM running in air gap network (no internet connectivity). Does it require any particular license for such scenerio. I'm following below article to do implementation http...
I have a standalone ASA5508-X running the latest ASA & ASDM code - ASA 9.16(4)76, ASDM 7.22(1). I've reimaged the SFR module with the latest 7.0.6-236 image (with the plan to patch this to 7.0.6.3-50). There is no configuration on the SFR other tha...
Hello guys,I currently face the issue can't donwload the switch configuratio from solarwinds. And here is the error message when I click downlaod running config " Connection Refused by Ip: x.x.x.x. and when I look at the logs on the switch, it's show...
Hello Everyone, We have deployed two cisco virtual FTDs on our environment and configure them as HA. Those firewalls are connected with core switch over ospf and they are working seamlessly. However when the standby unit become active it will lose t...
I have about 50 nats most are (inside,outside) object-group network1 object-group network1 dest remobject-group network1 object-group network1 I need to add at least 50 nats above these. I need to do a:nat (inside, outside) 1.1.1.1 2.2.2.1 dest r...
Hello,I am hoping to get some help in deploying HA with FTD 2140 devices. We recently upgraded to 7.4.2.1 (build30). Since the upgrade, the HA pair went into Active/Active and I have not been able to correct the issue. I forced the HA to break. When ...
I need to create an ACL (or multiple ACLs) on my FTD2130 to allow hosts to the huge list of IPs and URLs required for Office365 (located here: https://support.content.office.net/en-us/static/O365IPAddresses.xml ) How can I do this automatically/scr...
Hello, We are using access point cisco air-ap1815i-i-k9 that are connected to our network and controlled by controller of same model, we configure a RADIUS parameter in WLAN (SSID) settings, we tested the cisco controller with the RADIUS server and t...
Hi everyone,I’m working with an architecture that includes two 3110 chassis, each hosting three instances. The instances are configured in an active/standby HA setup. However, I’ve noticed that when all three instances are running on the same chassis...
Hi Community,I have FMC with L7 IPS license outdated, so I could not deploy my rules down to my FPR,I've been told I could deploy rules by closing all L4-L7 functions.Where could I check if all of L4-L7 functions was close?BTW, I've found a settings ...
