Hi, We have two Firepower 4110 units that only have 2 logical interfaces. One is from a Gigamon tap and configured as a passive interfaces and the other is the management interface. We are using these units essentially as out of band IDS units. They ...
Forum Posts
Dear All, Please, I need guidelines on how to configure inspection policy for access rule on ASA Firepower for inbound traffic.Currently, I have 3 policies configured as following1. default policy2. Policy for outbound traffics inspection which worki...
Resolved! FirePower 8000 Device FQDN feature
I have Firepower 8000 Devices at Core Layer of my network. Code version for these Devices are 6.3.0.1. FMC for this device managed from is 6.4.0.4. Does Firepower 8000 support FQDN Objects ? if yes can you provide reference to it ? and tested it ?
Hi guys, I'm running a firepoower 2100 with asa image 9.12.2. An interface of the firewall is connected to production network in a uncontrolled space. For this reason I was trying to check some sort of network attack on that interface to double check...
Hello Cisco Community I have configured the above firewall using Firepower Device Manager , i am a bit new to this GUI interface, and i am having issues with the access control. I have set up all my objects with their appropriate IP addresses and hav...
My understanding is the syslog is based on the "Real-Time Log view which has the columns "Severity", "Date - Month, Year(Year to be remove)", "Time", "Syslog ID", "Source IP", "Destination IP", "Destination Port" and " Description" How can I remove f...
Dear Community i'm facing the following error when i deploy the Access Control policyone of the 5525x firepower succeed while the other fail.the FMC is a virtual appliance.even when i deploy a basic any to any policy
Apologies but I'm new to cisco and command configurations and to be honest I'm at my wits end. I have been set an assignment to configure the following to an existing network.My education establishment uses version 7.2.1 although I'm not sure if this...
we have an ASA 5500x environment like this.Main site 5516xremote sites 5508 and 5506x we are using a Firepower Service VM to manage all the firepower services on the devices.we are not in FTD mode. since the 5506x w/firepower is now EOL, is it possib...
Resolved! SI URL whitelisting not working
Hi, I have enabled DPI inspection on my FTD units. When I whitelist a URL by domain or URL, via the connection events in the fmc, I am still getting blocked for the URL category. Per the event log, it is getting de-crypt and the behavior is same with...
Dears,Happy new year to all; I have an issue regarding retrieving web content for web service from my webvpn (clientless-ssl ), please advise me regarding this issue as attached. ASA Model: 5515Version: 9.12 Thanks.
I am trying to send a POST request to the Firepower REST API. See the following information:POST accesspoliciesRequest Type: POSTDescription: Creates an access control policy with the specified parameters.URL: /api/fmc_config/v1/domain/{domain_UUID}/...
can anyone tell me the summarized steps on how to self generate a CA and self sign a certificate to use in ssl decryption rules?
Hello Cisco community! My name is Steven Blake and I’m retired military currently working as a contractor for an Air National Guard Unit in Reno Nevada. We have some pretty old Cisco equipment that we are looking to dispose of. This equipment has ...
Hello, I created a VPN connection between my ASA 5506 and AWS. According to AWS Support, everything is correct on the AWS side. It just continues this loop every hour. I've attached my config hoping that will help with troubleshooting. I can't start ...
