Hi to all,i am running a pair of FTDs in HA. They run 7.2.8.Suddenly the backup pair started announcing that the SSE Service is down (please see attached png for FTD-2).The primary FTD (FTD-1) works OK and the SSE Service is user disabled as i have d...
Hi all, Now we are using RA VPN in Different firewall ,Will enable RA VPN In FTD manage by FMC Flow -External user -Permitter firewall FTD -RA VPN firewall FTD - AAA-Cisco ISE -Mostly Authentication -Certificate + OTP Now our main concern is how ...
Hi, I am moving from 5506x working in asa mode to firepower 1010 in ngfw mode. It is being used in a remote location mostly to protect web servers in a datacenter and I want to monitor the temperature of the unit (Munin is charting the data). For 550...
Good morning everyone,I recently installed a CSF 1210CE FTD on which I configured two external interfaces to use two ISPs with two different public IP addresses.I then configured two default static routes with metric 1 for the main one and metric 5 f...
I'm trying to configure macec encryption between a cisco Catalyst 9300 switch and a server that is running Linux (red hat).I tried to combine guides from red hat and cisco to do this but so far no success.For the cisco side I used this guide. For the...
Hello Team,I have topology as attached, I have introduced another interface on the ftd [172.16.40.25] . this is where have configured the new tunnel to the branch site. on the asa have natted 41.206.58.2> 172.16.40.25 on 4500/500 services. i then us...
Hello,I have a Cisco Firepower 1150 running firmware version 7.6 with three connections to different ISPs.I want to set up Remote Access VPN (AnyConnect), but I encountered a limitation: Firepower only allows configuring VPN on a single external inte...
Currently have a Virtual FMC with ASAs converted to ftd, these will be decommissioned and replaced with 1210c on our on prem FMC. The asa/ftds can not be upgraded anymore, hence on a separate fmc virtual until we get rid off them.How could we replace...
Dear Community, We explore the solution to mitigate VPN brute force attack in Cisco FTD. AD users always locked out when under targeting potential VPN brute force attacks so it leads to AD account locked out and impact to legit users (internal user...
One of our organization ask Does Cisco Firewall-FPR1010-NGFW-K9 supports network aggregation (link aggregation/port channeling)?
Initially, I started designing this project using the Meraki MX-250 at the central site and MX-105 at the remote offices. After receiving feedback from the Meraki community and the limitations that were pointed out, I thought it would be best to avoi...
FPR-2120 ASA Version 9.20(3)7 We have 2 FPR-2120 active/passive failover.Both systems had been registered with smart license about 2 years ago.Multiple failover tests were successfull, last test 2 months ago.Now we had switched off both ASA systems f...
this bug is breaking the access policy. it has been fixed with removing the , from user in AD,but still i see the issue deployment is failing and saying that object is not available.is the FMC version 7.6 or 7.7 is recommended for production yet or n...
Dear Team, Please help in FTD cli Object group create & add network, also on existing group need to add ip address. check & share commands
Dear Team, Can anyone help me to to find a cli command on cisco FTD, I want to know if someone trying to open a application from PC, then how to check source ip tying to which destination ip & port. Actually i forgot. Some commands are there like li...
