ASA v8.03: I've noticed that if I turn on various debug commands (eg: "debug crypto isakmp sa"), they seem to be automatically turned off when I exit my SSH session. Is there any way to keep them persistent between sessions? Cisco routers (IOS) kee...
Forum Posts
Hi Background story: I have a customer that are deploying over 900 FTD in CDO and i have a python program that configure and deploy the configuration to each device I have a program that make a bunch of configuration changes using the Cloud delivered...
Resolved! FTD Quality of Service
hi Ciscohave configured QoS on our FTD appliance but only some dashboard 3/6 are not showing appreciate your assistance as to why below are not showing..on some dashboard which parameters need populating so that the data is revealed on the DashBoardT...
Hello, We have a ASA 5225-X H/A pair with SFR modules. Within a month of time both modules have crashed and I'm trying to figure out if this is a physical issue with the SSD disk or just a corrupt filesystem. We have tried re-image the modules, but w...
Hello,I have a cluster of two firepower 3120 in high availability (active/stanby).It's managed by FMC.Everything is running in version 7.3.0.For now, an ECMP zone is configured and load balance the trafic between my two ISP, which both have a bandwid...
Moring/Afternoon/Evening allBeen given a Firepower 1010 to setup and we are going to be using it with Cisco Defense Orchestrator but i'm having issues with the device being seen by CDO.This is likely going to be something simple but i've been looking...
after upgrade, i got the same error as in this BUG, I deregistered and registered again but the same license error The workaround says: 1. vim into the file /etc/sf/.health_monitor.data and delete the following line. IDCERTEXPERR:2 admin@FMC1...
Dear Community,We are trying to get Radius authentication to work for one of our ASA´s.It is working for every ASA except ASA1.following structure is given:ASA1:GigabitEthernet0/1nameif transfer-ASA1-ASA2security-level 10ip address 194.1.1.1 255.255....
This is a site-to-site IPSEC tunnel. Everything looks good, including the packet capture but the packets aren't seen on the far end on their packet capture (the other company on the other side of the tunnel). Both sides are using Cisco FTD's. How ...
Hello All,Has anyone configured transparent WCCP redirection on Cisco FTD managed by FMC?I need to migrate this ASA WCCP configuration to FTD Flexconfigwccp web-cachewccp 70wccp 80wccp 90wccp 91wccp 93 redirect-list WCCP-FORWARD group-list wccp-serv...
Login page hung saying system processes are starting... it's been hours...gui status follows... admin@Sourcefire3d: sudo pmtool status | grep -i guimysqld (system,gui,mysql) - Running 3853httpsd (system,gui) - Running 3856sybase_arbiter (system,gui)...
FP1010 locally managedI have a policy at the top of my list blocking certain IPsHowever, I see in the logs that IPs on that list are still able to make remote access attempts via WebVPN and get rejected because the user doesn't exist.Why are they eve...
lets say FMC down for 1 day, after FMC up, will the 1 day event send back to FMC? will it have any datalost?
Need to setup control plane blocks for two OUTSIDE interfaces.Only have production ASA's running 9.1.x so can't "try it out".Will the below work, or is there an easier method?BLCKCOUNTRY is an object group (not shown) with 200 subnets to block.10.11....
I have configured a rule in the Default NAC that is supposed to block a Layer 7 protocol application. When I analyze hit counts, it shows the rule has been matched. And when I analyze connection events, the traffic is showing as dropped. This is the ...
