Network Security

Resolved! FTD as IPS Deployment

Hi Guys, I am deploying a new 4100 as an IPS but when I register it in FMC it shows routed mode. Does it affect the IPS if it run in routed mode? I just want my IPS like a bump in a wire so I decided to configure it with inline pairs. Does it still c...

FXOS Configuration Syslog Issue

Hi Guys, I am configuring a standalone FP4110 to run FTD application. I configured platform settings of the FXOS chassis however, I got a validation error when I am trying to configure the Syslog section. Below is the error message, "Same hostname ca...

Cisco ASA 5516 FTD image High Availability Pair Replacement

Hello everyone , We have a deployment where we have 2 Cisco ASA 5516 with FTD Image installed as HA Pair on Firepower Management Center and we need to replace them due to an RMA . We wander what are the steps to accomplished the replacement with...

Configure PBR with IP SLA on FTD

Hello Everyone , We are running FMC/FTD (4110) v6.2 , is it possible to create a PBR policy with IP SLA for Active/Active dual ISP scenario ? So far i am able to configure PBR with next hop but dont see any option to tie in IP sla with route map ?

How the "show conn" output must be read?

I want to see the sessions table from a PIX with Software Version 8.0(4). following one session seen using the "show conn" command (the IP addresses have been changed for security reasons): 134 in use, 3212 most usedTCP outside s10.102.128.89:8080 ...

Resolved! Basic NetFlow questions for ASA

It's the first time i'm actually configuring NetFlow. I've read the instructions how to configure NetFlow but i'm having 2 questions.1. I just want to export traffic from one interface, but we already have a TCP-Bypass Policy Map on that interface. C...

Resolved! Configure "http redirect 80" in FMC

Hi All, I am struggling with this. I want anyconnect users who accidentally go to http instead of https to be automatically redirected to https. I believe the command "http redirect outside 80" will do this but I can't figure out where to do this...

POLICY BASED ROUTING

Can some one share the procedure for PBR config in Cisco ASA 5516X with FTD6.2

sourcefire port objects - import option?

Hi, I'm working with a customer to migrate ACLs from an ASA to a sourcefire appliance. What I'd like to know - is there a way to import a list of port objects without going through the GUI and making them manually one at a time? Thanks,

AWS FTD connecting to onsite FMC

I am planning on getting a FTD solution on AWS. I currently already has a FMC on the local network. Does anyone know if i can manage it with the FMC on the local network? or do i also need deploy a FMC solution on the AWS network as well?

Restoration of FMC

Hi Guys, If I restore a backup configuration from other FMC to another, does the IP address included in the restoration? Thanks

Policy Based Routing for IPSec VPN

Hi all, I wanted to know if it was possible to used a PBR on an ASA for IPSec VPN tunnels. I have a client that just upgrade to an MPLS circuit, but they have several location still on standard internet pipes. I have a backup circuit at the main lo...

Resolved! Does ASA with FirePower integrated AD must install agent?

Hi, I recently having lab for ASA with FirePower integrated Microsoft AD deployment,but I am wondering whether FirePower must install agent on AD server? I installed agent on AD server and setting LDAP connection on FireSIGHT VDC server,then it can f...

CISCO ASA 5505 - SITE TO SITE VPN ISSUE

Hi All, Appreciate if someone can help me . we are going to change our ISP.we need to change the VPN settings on our branch office(as on the picture -using cisco asa). I have few questions -is it possible to do this by changing the current public ...