HI, Does any one has a tutorial how to configure FTD SSL VPN authentication with NPS server ? I only found this (for ASA):https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/117641-config-asa-00.html I trie...
Forum Posts
Is there a way to disable anti-replay checking on an ASA?? Im getting this error constantly almost in my log from one particular user, I have had them upgrade their VPN client to the newest version but it is still happening? Any suggestions?%PIX|ASA-...
Hi I am collecting User-IP mapping via User-Agent quarrying the AD servers. But my wireless users authenticate via ISE and I don't see those uses in FMC. Is there a way to configure FMC to get logs from ISE (without PXGrid) or configure something on ...
Hello, Anybody knows if the new 1000 series firepower appliances support hardware-accelerated decryption or its only supported on the 2100/4100/9300 series appliances.
Hi,I have below scenario and wana allow internet access for inside hosts. Currently hosts access Internet through web proxy ( Non Cisco) and Proxy address nated on external firewall and connect to Internet. I have below scenario. Group - AInside Netw...
Hello Firepower community,On Firepower 6.4.x does anyone if it is possible with FMC/FTD to configure SSL inspection bypass using FQDN of target host?I have configured bypass using certificate issuer DN and while this does bypass SSL inspection for co...
Trying to implement a SSL cert for the web server on a Firepower 1010.Not managed by a FMC (yet). Still in Testing/R&D phase. I'm not using a known/trusted certificate authority. I have my own CA cert, generated locally, distributed locally, then use...
Hi,I am getting the below from the crash analysis , I would like to know the crash might be due to the cpu hog ? and What is that Process: IKE Receiver Long CPU hogs of 500ms or more occurred recently (within the last 5 minutes), which could contri...
After a disconnection occurred in a videoconference, troubleshooting was initiated to identify the root cause. After log analysis, we found that the call was disconnected by H.323 timeout. However, I would like to know if you have any ASA parsing or ...
Hi, How could I configure on a FTD 6.4 (FMC) the " Microsoft CHAPv2 Cabable" option that is avalable on ASA for a Radius server authentication ?
We configured the IP SLA on Cisco ASA's to track the end to end connectivity of the internet lines. We wanted to monitor the SLA in our monitoring tool (nagios) , i found OID for Routers/Switches but couldn't get it for ASA. Looking for your support
Hello for everybody. Did anyone use scheme, when NAT and remote access vpn (anyconnect) are configured on the same HA pair or cluster of firepower 1120/1140? Is this scheme feasible?
Resolved! Can't ping through ASA
HiFor some reason I can't ping from my internal network to the external network through the ASA in my network. I have attached a copy of my Packet tracer file. Any help would be appreciated.
Dear All,We have configured DMZ on Firewall and our DMZ VLAN ID is 2 (172.16.2.0/24). All the server are running on the same VLAN. Now there is a requirement to create a virtual IP on the same VLAN i.e 2 and will configure static NAT with port forwar...
Hi All, I have a question during my project for ASA High AvailabilityHere's the topology : The Failover already working, but one point was not working .So if we remove cable from ISP 1 (orange cable / A), the traffic didn't go through ISP 2. But if w...
