Hi Everyone! Is it possible to manage via FMCv several remote FTDs or must the FMCv be deployed on the same LAN as the FTDs?Today I have devices on different clients with FDM and wanted to manage them via FMCv. Thanks!
Can anyone suggest me a custom rule to scan the content while downloading from FTP.I have created a custom rule with Source IP and source port as any any. Destination IP stands as FTP Server with port 21.In detection options I am using Content with "...
Good day. I apologize for the stupid questions, but for some reason I cannot find the answer in the documentation. When making a change to FMC, data for the deployment to FTD is collected, in FMC you can see the configuration of which modules will be...
Hi, I have an ASA with FirePower and also have 2 x FMC in a HA configuration (over a layer 3). My question is, how does the ASA FirePower senor know how to failover to the secondary FMC in the event the primary FMC dies? Since the initial configura...
Hello,I'm in the process of upgrading our ASA software from 8.2 to 9.1 and I've noticed the 'no arp permit-nonconnected' command in our config. I had a look at the command reference http://www.cisco.com/en/US/docs/security/asa/asa90/command/reference...
Hellolooking for assistance. Trying to figure out if there is a way to restrict the type of syslog messages I'm seeing.For example, is there a way to filter out syslog message %ASA-6-302013, and only see syslog message Syslog Message %ASA-6-106100 wh...
I have a pair of ASA 5520s. When I SSH to the firewall i'm prompted for username. I put in my username, but when i am prompted for password i can just hit enter and I am allowed in. Then when I go to enable mode and prompted for password I can hit en...
We setup GEO blocking in Firepower which appears to be triggering events, however the blocked countries can still ping outside interface of ASA? Is this correct? or should I be seeing this blocked also?
Hi!Am trying to set up my network, the network will have inside, dmz1, dmz2 and outside interface. The most secure interface is dmz1 followed by dmz2 and then the inside interface. dmz1 and inside interface should ping each other. The inside interfac...
Hi All, Is there a best practise when configuring failover and statefu failover links between Firepower 4110 appliances? I want to configure both failover and stateful failover links, however I'm not sure if I should use a single 10GbE link for both ...
Hi Guys, Are there any way for me to see the bandwidth usage of a particular VLAN in FTD? Currently, only one VLAN is experiencing slow connection when they tried accessing to the internet and the other VLANs are not. Configuration wise, the only dif...
I've been using UptimeRobot for years as a first level of notification that there might be an issue at the office. It's worked well for what it does and it's free. For security reasons I want to disable ICMP on our main outside interface. I know I ca...
Hi everyone, I have two firepowers configured via FDM and I just deployed an FMC VM, my question is if I add my devices in the Management Center, they will keep the settings or they will lose and I will have to reconfigure them from scratch. Thanks!
Hi Guys,Just to check with you, I created a QoS policy in FMC with the source interface of VLAN-A and VLAN-B with a 100 Mbps rate limit. Is the 100 Mbps shared between the VLAN-A and VLAN-B or not? Thanks
