I'm looking for documentation on configuring the IPS features on a firepower 2120 running ASA code. Any help would be greatly appreciated!
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,588) -
Cisco Bugs
(42) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(147) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(33) -
Cisco Secure Firewall Management Center (FMC)
(155) -
Cisco Secure Firewall Threat Defense (FTD)
(191) -
Cisco Security Cloud Control
(8) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(263) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(33) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,576) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(322) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(92) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,579) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,780) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(8) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(641) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Resolved! ASA 5508 - VTI site to Site tunnels
We have a few sites in out environment all connected with site to site tunnels on our ASA's all using VTI routed ipsec tunnels. This is all using BGP on the back end for routing. This has been working great. We are adding a second ISP at office A. Th...
Hello, I am using a FirePower 2110 and created a new admin account (myadmin) besides the pre-defined admin account (admin). I was able to login using both admin accounts; the pre-defied (admin) and the new one I created (myadmin). To follow our ISO...
Hello, We purchased several FirewPower 2100s but not using the FTD; however, we are only using the hosted ASA. I was trying to create sub-interfaces on the ASA and was able to. The ASA's config show the sub-interfaces. I spent hours just trying to...
Hi, I'm using a Cisco ASA 5545x in Multi Context mode. I have a license and use Cisco AMP and thought of moving to FTD, but I've reliased that FTD dosen't support multi context. Is multi context on it's way? or is multi instance similar? many thanks,...
Hi, Is it good practice to enable IPS on the core router to inspect internal traffic?Please mention bad impacts to normal traffic.On the edge firewall IPS is enabled. Thanks
Hi, I have a task to swap-out two ASA single-mode firewalls. They are in a pair and neither has failed, this is merely a hardware upgrade. I am tempted to failover i.e. enter "no failover active" and replace the Primary unit first. However if I left...
Hi, I am having a weird issue where traceroutes show the second response on windows and the second & third on *nix as a * but only for the first hop. I don't know how to explain it or what might be causing it. Pings to the same hosts are continu...
Few customers are trying to access a website, FP displays some attempts as blocked and some as allowed. And when it allows the site, it doesn't categorise it. What exactly does this mean? I don't think it's actually allowing the site. Please check ...
We currently have one ISP with a basic setup (inside, outside, DMZ, etc). We have a /27 setup with a few static IPs that are natted and all of the clients are dynamically natted. What we'd like to do is add a second provider for internet for the c...
Do we have an option to do FMC API for Bulk PUT operation.? As we can do Bulk POST operation.
Under "Build Filter" I don't see anything related to filter for "deny" or anything else other than ip, ports, etc. I'm probably looking in wrong place. Anyone know good doc to refer to I can't find on Cisco.
Hello i have ASA 5506-X with Firepower threat defense (6.2.3 build 83 ) and Firepower management center version 6.2.3 and i make all re-image configuration as guide https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200884-installing-...
Hi, I noticed the default hello/hold timers on FTD (Cisco FTD 4110 6.3) are 60/180 seconds, although the link speed is more than T1 speed - link is 20 Gbps. The other end of my FTD is a Catalyst 9500 with default timers of 5/15 seconds. I can chan...
So I am looking at logs on my ASA5505 in my lab and noticed when doing pings from a host on the Outside interface, the source IP in Real-time log viewer is the Outside interface and not host machine - see attached. Also, I don't see pings on the lo...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 01-27-2026 11:07 PM | ||
| 01-27-2026 10:35 PM | ||
| 01-27-2026 04:08 AM | ||
| 01-21-2026 03:34 PM | ||
| 01-21-2026 11:24 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 5 | |
| 4 | |
| 3 | |
| 2 | |
| 1 |
