Hi Guys, We have Cisco ASA5545-X Threat Defense deployed in our infra and it is managed from the FMC.We observed a continuous spike in the CPU and it stays at 100% all the time. Not sure why this kind of behavior. We checked from the CLI and there it...
On an ASAv in Azure how do you change the default static route? When the ASAv is created in Azure the default static route is bound to the management interface. I have setup an outside interface which I need to route my data traffic through. The ...
Hello everyonewe're running two Cisco ASA 5525-X with firepower services in HAFTD version 6.2.2FMC version 6.4.0.4I was trying to upgrade to FTD version 6.4.0 but i got the error (remote installation fail)with no further details, a couple of days pas...
Hi Team, We have requirement of monitoring the FMC via SNMP using monitoring tools. We tried to configure SNMP in system setting check but unable to do SNMPwalk for FMC. Please help if anyone integrated FMC to monitoring tool via SNMP. Regards, AKK
Hi All,We are using FMC 4600 for one of our customer which has two 10G port for management connectivity purpose. Currently only one management 10G port is used and connected to Switch-1. Now customer wants to have redundancy for management port also ...
After successful Installation Fire Power Module is not loading in ASDM. But I can ping it from my PC. Also I can access through ssh.Note: I cant ping from ASA to FirePower ModuleCan anyone help me to findout the problem. FIREWALL-Primary/act# sh modu...
Time and again I keep getting requests to block xyz.com on Firepower. Is there a way to check if a particular URL is already blocked on Firepower's SI or something like that? I am on FMC 6.4
Hi guys, We have a couple 9300 FTDs managed by a single 4600 FMC. We are getting a second FMC in a few weeks and wanted to know how would I add it to the existing setup? I can't find anything on Cisco's website. What I'm thinking is: 1. Restore th...
Hi,I have 2 FTD 2140 (version 6.3.0) managed by FMC 6.4.0.4 (build 34).i have several portscan (PSNG_TCP_PORTSCAN (122:1:1)) intrusion events and i have tried to block them using the IPS rules (drop and generate events for this attack), NAP policy (e...
Hence we have never bought network appliances with base license, I haven't involved with licensing so much, do I get a base license right out of the box when I buy a FPR 2130? that base license already includes 2000 Anyconnect peers, and the number o...
Hello,I have to deploy a new FTD 1010 to a remote location. I will be on site later this week, however I don't have the static IP address information yet from the ISP. We deploy the 1010's via the FMC in our data center before we deploy. Is there a w...
Dear all,currently form my DMZ can access to inside but i want inside access to DMZ, how to enable on ASA v.9.1 Best Regards,
Still having issues with this even though we have upgraded to the latest software revision 6.3.0.1 from 6.3.0.CSCvm03931 info is a bit misleading as it states that 6.3.0 is an affected release and also a known fixed release.Anyone else having the sam...
Dear All,I writing to you because I can't find anywhere answer for my question. Basicly, I have migration from ASA(2xASA in failover active/standby) to FTD. I have 2xFTD 1140 and FMC. I want to migrate with minimal downtime, so in my LAB I prepared 1...
HiI am trying to configure a VPN to AWS from a Cisco ASA which is doing the VPN termination. The agreed setting are:IKEv1 / 2 AES-256SHA256DH-24PSKOur ASA is running 9.8.4(26). I don't know about AWS as they are a vendor rather than our own instance....
