I have to configure Site to Site VPN on Cisco Firepower 4100 with FTDs .... does Site to Site VPN require any licensing ?Also, does multi instance FTD support Site to Site VPN ?
Forum Posts
Hi, Need some advice please. I have 2x ASA5516-X firewalls running in active/standby HA and running eBGP with a service provider. The provider have two CPEs on site, connected via a common subnet with the outside interfaces of the firewalls. We ne...
HiI have FMC 750 connected to SFR on ASA 5555, I have some rules to filter internet usage in my network, one of these rules Blocking (whatsapp media messages).I removed it from the rule with saving and deploy it, but it still block it.Any solution??
Hi all ,I need you help please ,Briefly , I have two FMC 1000 ( HA ) and I have to upgrade them from current 6.2.2 to 6.2.3.I got the upgrade image from Cisco Website and I upload the package to Standby FMC System >> Update >> Upload >> ( I got the ...
Hi everyone, I couldn't find anything too definitive around whether or not FTD devices need access to internet and if so what specific URLs etc? Do they support proxy? I'm assuming that if we're using FMC to manage everything, licensing and other u...
Hi , Good day.I just seen a mac flapping issue at client's Core switch. Nov 22 06:07:23.913: %SW_MATM-4-MACFLAP_NOTIF: Host 20cf.30ab.a02d in vlan 1 is flapping between port Te2/0/9 and port Te1/0/37Nov 22 06:07:25.952: %SW_MATM-4-MACFLAP_NOTIF: Hos...
Hi,how change nat rule position in ASA(9.1.2) without deleting it? I tried to reenter nat rule with new position but no success. Thanks in advance
Resolved! USER-IP mapping FTD
Hello, I understand that in order to Integrate FTD with ISE we need to perform PXgrid integration and add Active directory as a realm, which works well. What about the users performing Dot 1x authentication using ISE local Database, How does FTD ...
Hello Everyone,I have a C881W and cannot communicate through port 987 from the public Internet. I have the following commands in my firewall and I can communicate on all other ports in this list.permit tcp any any eq 987permit tcp any any eq wwwpermi...
Hi.. We have firepower FW that is used to filter the VOIP traffic to our telephony platform.When we are troubleshooting voip issues it is good if we can dump the SIP and RTP on the firewall.We can do this from the FMC but the buffer is limited to 32 ...
Hi, Just a question I am upgrading our ASA 5545-X from 9.1(1) to 9.8 but as checked with upgrade path I need to first upgrade the 9.1(1) to interim 9.1(2), however I can't find in cisco software downloads the 9.1(2) interim release. What should I do?...
Dear. My office existing running FrotiGate201E with SSL VPN, I will setup Cisco FPR1140 w/transparent mode for two tier firewall protect solution, I want to verity Froti SSL VPN traffic can pass to firepower transparent mode ? Many Thanks.
Resolved! URL category #
hello everyone, during weekend i upgraded fmc to 6.4.0.4 version and since that time i see something strane in data analyses. in URL category column there is no longer Travel, Shopping, etc but i see there numbers like 1284. what does that mean? it i...
I received a new ASA 5506-X that I successfully deployed in my network by following session "ASA9.7 and later" of the quick start guide (https://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/5506X/5506x-quick-start.html). I then tried to do ...
Hello all, I was trying to upgrade to the latest Anyconnect version on the ASA pair. I successfully did that, to both of them but in the process, the Primary active FW became as Secondary active to make it back to Primary active I gave the command: "...
