Whats the best approach for Bulk configuration on FMC -> FTD ? I want to replicate ASA Access policies, objects & services to FTD (managed via FMC), so configuring via FMC takes a lot of time and terribly tedious. Since we cant configure Access polic...
Forum Posts
Resolved! FMC ISE Integration - SGT
ISE version 2.1 FMC version 6.1 Running into an issue getting SGT mappings to be pushed to the sensors from my FMC. I believe I have identified the issue, but wanted to see if anyone has ran into this before or got it working. Here is what I am exper...
Resolved! Cisco Firepower 1010 - ASA Software
Hi all, Really quick question, can the Cisco Firepower 1010 run the Cisco ASA software? The below suggests that it will support the asa software in a future release? Thanks! The Cisco Firepower® 1000 Series is a family of three threat-focused Next-Ge...
Hi all, I'm using the device mentioned above running 9.7(1)4.Does anyone know what these numbers means (marked in red) ? access-list Vswitch_MAP_access_in line 4 extended permit tcp host 10.22.177.188(167929009) any4(65538) eq 135 log emergencies in...
In my Cisco asa 5515x FDM at the moment of clicking it does not direct me to the monitoring section and if I give it from the url it marks error help. model handle 5515xversion ftd-6.2.3-83patch Cisco_FTD_Patch-6.2.3.1-43patch Cisco_FTD_Patch-6.2.3.2...
My setup is exactly what is explained here: https://www.cisco.com/c/en/us/support/docs/security/adaptive-security-device-manager/118092-configure-asa-00.html My problem (which off course is now resolved) is : I can't SSH / ASDM to inside interface of...
Dear All, Do we require license for firepower other than URL and Malware. Mean to say does firepower management center need any license to add the device in it. Thank you. Your response will be appreciated.
Resolved! External access to internal vlan
Hi All, I need to setup a solution where a set of CCTV cameras are within the private vlan (internal) but needs to be accessible by a 3rd party vendor from outside the network over internet. How to achieve this ? Is it just by putting an access-lis...
Hello I have an FTD 2110 and some how a manage to change management port to 1... ===============[ System Information ]===============Hostname : ftd2110-1DNS Servers : 208.67.222.222208.67.220.220Management port : 1 <------- should be 8305Help, becau...
HA firewalls restarted alone, but the Standby box crashinfo generated it on the date of the event, but the active box crash is dated 2016, would you like to know the reason for this? Another thing I noticed was that crashinfo's Appliance Software Ver...
Hello, We had a cluster of FP 4100 with FTD 6.2.3We noticed one of the cluster member kept rebooting thus sent the device to "Failsafe mode" and some portchannel are suspended. I did reboot the Logical device but no way, it still does not work. I've ...
I have doubt in configuring AAA configuration in multi-context modes. 1.Will configuring the local user account in the SYSTEM CONTEXT will give full access to all the other contexts since its the system execution space. 2.Since we can't configure AAA...
Hi allI've been using CSM for years managing several ASAs and access lists on our internal core routers. All ASAs are soon replaced by Firepower Threat Defences and in this age of cloud/web based management CSM feels really old. I've had help from ou...
HiI need some good ideas from you all. I want to keep an eye on my nat pool, to make sure they are not fully allocated.I can go to cli and show nat pool and get this output:TCP PAT pool outside, address x.x.x.x, range 1-511, allocated 0TCP PAT pool o...
Resolved! Multi Instance Failover
Hello,On Firepower 4100/9300 platforms (FP1 and FP2) running 3 instances (A, B,C), can I perform Chassis failover? If so how does the failover occur? Is it based on interface monittoring?If not, how does instances failover work? If Instance A on FP1 ...
