Our ISE environment only authenticates wired connections and passes VPN authentication from our ASA firewalls on to our Active Directory. One of our VPN firewalls gets brute forced hit pretty hard. Luckily it is with attempts with usernames we don'...
Forum Posts
I'm setting up a Cisco Firepower 2130 FTD, no FMC. This is for a lab environment.I want to be able to ping thru the Cisco Firepower 2130 from a switch on the inside interface to a switch on the outside interface and vice versa to check connectivity. ...
Hello,My Cisco FirePower 1120, does not boot due to SSD disk failure and at this point I need to replace it with a new one and I am wondering to know, how can I Perform a Complete Reimage of the new SSD disk.The ROMMON version installed is 1.0.25 and...
We have IPSEC VPN setup(HUB to Spoke), were clients access internet through VPN from Site to HUB(Data centre)I have a requirement of offloading a certain internet destinations towards internet instead of injecting through VPN tunnel, to offload it di...
I have a ASA 5585 with single slot (No IPS), Simple network, ASA Outside interface connected to Internet /Wan and Inside interface to LAN , ASA Management 0/0 is connected to LAN Access switch Management VLAN. I have allowed any any policy for man...
Hi All,I currently have 2 HA pairs of 4200 FTDs, 1 pair located in DC 1 and the other located in DC 2. The firewalls are used to terminate a number of VRFs that we operate within each data centre. All VRFs default to the local firewall. To avoid issu...
Resolved! Cisco ASA 5525 Maximum ACL Lines
Hello All,Could you please help me in finding out the maximum number of ACL's accepted in a Cisco ASA 5525? I am trying to add an access list which is worth more than 45K lines to block certain IP's based on geolocation. Would this effect the perform...
Resolved! ASA 5516-X Spare/HA
HiI am looking into having a spare ASA on hand for emergencies at a minimum, or if the cost isn't much if any, configuring HA between the devices.1. If I elect to have just a spare in case the current ASA goes down, can I just backup the current ASA...
Hello everybody, I have just updated the ASDM from 7.19(1)95 to 7.22(1) om a ASAv running 9.19(1)28. previous ASDM: 2808 196058416 May 29 2024 16:15:30 asdm-openjre-7191-95.binnew ASDM: 2820 204561552 Feb 06 2025 14:30:58 asdm-openjre-7221.bin I have...
Resolved! Firepower 1010 NGFW upgrade 7.0 to 7.4.2
Hello, I want to upgrade a Firepower 1010 NGFW from version 7.0.1-84 to version 7.4.2-172.I have the following files ready: 1. Cisco_FTD_SSP_FP1K_Upgrade-7.4.2-172.sh.REL.tar 2. Cisco_FTD_SSP_FP1K_Patch-7.4.2.1-30.sh.REL.tar 3. cisco-ftd-fp1k.7.4.2-1...
Hey all, I have been working with a cisco ASA 5506-x base license, version details below: Cisco Adaptive Security Appliance Software Version 9.8(2)38Firepower Extensible Operating System Version 2.2(2.90)Device Manager Version 7.9(2)152 I have ...
how to access the FMC with custom https port my version 7.4.2I need to access the FMC with https://x.x.x.x:4567
Hi Dears, I’ve encountered an issue with FTD managed via Firepower Management Center (FMC), running the recommended version 7.4.2 Issue Details: After performing an Nmap scan on the outside interface, we discovered that TCP ports 21, 2000, and 5060...
Hello,my boss wants me to generate Reports for our FTDs, managed by the FMC. But we need to split the reports by Device, to split the data geographically into us and our clients. I cant find anything on activating a filter or something simular. Maybe...
