Greetings,I ran readiness check before the upgrade 6.6.4 to 7.0.5 on FTD Firepower 2130. I got error message: "SCRIPT NAME: 000_start/410_check_disk_space.shRECOVERY MESSAGE: Not enough disk space available in /ngfw(Filesystem:/dev/sda4) to perform t...
Forum Posts
Hi to all I have to configure anyconnect from the guest-wlan with external dns-servers configured. NAT is needed to translate the public ip addresse of the firewall outside interface to the private ip adress of the firewall-interface terminating the ...
Hello everybody,our customer has a FMCv 7.0.4 and two Firepower1120 running 7.0.4.This morning I got a ticket because high CPU load on the FMC: Service: CPU Load (nwc_cisco_cpu-load) CRITICAL - load-15 is 15.81 (15 min Load Average too high (= 15....
I have FTD1010 and customer want to have dual ISP Active\Standby and LTE 3rd backup So he need high availability by using dual ISP contention Active and Standby, and in case both ISP are down he need 3rd LTE backup for selected Phones and Computers o...
We have several FPR1010 with Firepower Threat defense that is no longer possible to upgrade, due to that tasks are "Stuck" in the list.It is related to version 7.1.0.1-28 and 7.1.0-90We have tried to solve this with some expert commands about the bui...
We have Email alerts configured for Intrusion events.We also have a Correlation policy to send an email alert for Intrusion Events that drop.During our initial testing, we received the alerts. However, all subsequent testing produced no email alerts....
Hello All,We need to leak routes for specific audio cloud hosts from GRT to User vrf and reverse leak as well. But I couldn't see the destination leaked routes in GRT and networks aren't reachable.Could someone suggest some progressive comments or id...
Resolved! FTD security level 0
Hello Guys, I am new on the Cisco FPR 2130 device. Some questions below after hands-on pratices: 1. The default config contains inside and outside interfaces. But why do they both have security-level 0 ? Do I need to change it ? How ? (I didn't fi...
Am I missing something? Is there really no way to enable/disable specific rules in an Access Control Policy with FDM like with FMC or on the ASA. I have searched online and can not find anything. How is that even possible? I'm finding FDM is almost v...
Hi I was hopeing some one could explain how to do this.I am trying to restrict my core switchs (4506's) to only accept incomming SSH and Telent (managment) traffic that is directed to a single ip interface.I thought I could do this by placing a acces...
Hello everyone, I can not connect to the internet or ping the gateway or the outside interface from my host in the inside network. These are my settings: :: Serial Number: xxx: Hardware: ASA5510, 1024 MB RAM, CPU Pentium 4 Celeron 1599 MHz:ASA Versi...
Resolved! SFR sensor upgrade fails readiness check
Hey all, 3 ASA 5516-X with sfr modules running 7.0.4 on ASA 9.16(4) with vFMC running 7.0.5 on ESXi 7.0.x latest build. When attempting to deploy the 7.0.5 upgrade patch to the sfr modules, they all fail the readiness test with the following error: R...
Hello. Simple quick question...Inside the LAN I'm installing a new vendor's Cisco box that has a preconfigured VPN to a server on the www. All communication will originate inside this new box that connects to a switch that connects to the inside inte...
Our Firepower Threat Defense SNORT engine is triggering rules that don't match the actual traffic.For example, rule 1:16540:18 references CVE-2010-0477 which has the description: The SMB client in Microsoft Windows Server 2008 R2 and Windows 7 does n...
Resolved! ASDM on Ubuntu
Hi Since a long time i'm dealing with different ASDM issues. Now i have a new Problem ... and i can't fix it. index.html shows up different ... so i cannot connect to the ASDM anymore with my Ubuntu (14.04) machine. Can anybody help? Does anybody kno...
Recognize Your Peers
.jpg "Hall of Fame Community Legend"){kind=icon}
.jpg "VIP Master"){kind=icon}
