Dear All, I would like to know if there is an option to purchase a Firepower appliance (2xxx, 4xxx, 9xxx) and run an ASA+NGIPS image like a 5525-X or 5555-X. My understanding is that there is no such option and purchasing a Firepower appliance implie...
Forum Posts
HI there. I was wondering if there have been any improvements made to the reporting for the FMC. We are currently running 6.2.3.1 and i would love to be able to create a report that orders top X hosts by bandwidth consumed. Can anyone point me in the...
Resolved! ASA TCP timeout Timer
Hi Can some one guide me or redirect me to a document where I can find the suitable TCP timeout timer for my ASA box. Currently it is set to 3600 seconds. Our resources are 5585 12 GB RAM (capable for 4 million connections) configured with two conte...
Hi,Real time log viewer does not show the egressing traffic , it shows only ingress traffic ?How can I fix the issue Thanks
Hi, I have a question about the proper design when using FTD with SSL decryption. When I want to use decryption and I want to decrypt traffic for inspection I need to replace the certificate but in case this certificate is trusted there is a problem ...
Hello, Recently i just installed an ASA5508 for a client, They using D-link adsl Modem connected to the Cisco Router 4321 and then the router connected to my ASA on interface GE 1/3 for outside and my inside interface is connected to GE1/1 to Cisco C...
Hi guys! I did configure site to site HQ and Branch and also branch traffic go to HQ include internet.. and HQ have a firepower and use it for HQ so i wonder Can HQ ASA5525 firepower control branch traffic ? URL,, application.. ? without ...
I have several devices that use round robin hard coded NTP servers that I need to accommodate on a network segment. These devices do not behave correctly unless they can sync to an NTP server. Since they are not using authenticated NTP, I'd like to...
What license do I need to purchase to download Cisco Firepower User Agent?
HelloWe 're going to buy fpr9k-sm56-ftd-bun appliance and we want to install FTD image on it (not ASA image). We could configure it with the ASA image mode, but we couldn't find any option to select FTD image mode in the cisco build and price website...
Hi All,On our ASA we have two Site-2-Site tunnels configured (and working). How would i/we be able to let traffic from Customer A flow to Customer B through the 2 existing tunnels. If crypto maps or anything need to be changed at the customer ends, t...
Resolved! Cisco ASA kills idle sessions
Hi everyone, I just got in a strange situation here. I've got an ASA 5516-x with Software Version 9.9(2)36. We have some services which are connecting from DMZ site to LAN site via 1521 (sqlnet) to an oracle database. Sometimes when there is no traf...
Hi Guy's!I have an issue I need some help with. In the log files we keep getting Deny tcp src outside: when this happens we are unable to receive some emails. I have attached a screen shot. Any help would be appreciated! Thank you! %ASA-4-106023...
Resolved! Cisco ASA 5515-X reimage to FTD 6.x
hi,i have an ASA 5515-X with SSD and would re-image it to FTD.i don't see any star/TAC recommended badge on either 6.3 or 6.4, i only saw a star in patch 6.2.3.13.does this mean i download and upgrade using these files (6.2.3):ftd-6.2.3-83.pkgftd-boo...
I am in the middle of editing a few long ACLs that were created before my time. What I noticed is that when they were orginially created each line was created in intervals of 1. I know that I can copy the ACL out modify each line to be in intervals o...
