Need to uninstall CX then install Firepower on a live system. Any Docs on creating basic Policies to start with FirePower?
Forum Posts
Hello, I read in forums that even without SSL inspection (Man-in-the-middle) enabled the FMC can get information about certificates to make decisions in inspections.I know that an encrypted file is not inspected (malwares can use this to bypass sec...
This is an accidental duplicate of: https://community.cisco.com/t5/firewalls/routing-across-asa-nat/m-p/3724964 Hi, I have searched high and low over the last few days and couldn't find exact answer that would work in my case. I have the following ...
Hi all, I've configured my RV320 to forward port 21 to my FTP server. I am able to connect to FTP from inside my network, although from the internet I am not able to connect to FTP. I've also created a firewall rule to allow from any source t...
Hello , I have been quoted the above ASA with firepower and Firepower IPS. My question is , is FMC required to managed the ASA 5525-x firepower/IPS or can i do this via ASDM? Will i be able to create firewall/IPS policies without FMC? Thank yo...
Resolved! AnyConnect AlwaysOn not working
I have configured AnyConnect with machine certification authentication and everything works nicely. I can log on and is authenticated as expected. Now I want to enable 'always on'. The config is as enclosed. After enabling the 'automatic VPN policy' ...
Is there way to configure the Firepower 2100 as NGIPS in HA. We need to deploy FPR 2140 without making any routing changes in adjacent devices. I can see the options only for Routed/Transparent Mode .
Hello, I have an ASA 5508-X which I finally got to work. My lan management IP is 172.20.20.1 I log into it remotely with the AnyConnect client (from windows) and I was hoping to use ASDM or SSH remotely but it does not log in. Furthermore, I can'...
Hello, I currently have the ASA 5505 firewall set up to login through a DSL modem (passthrough mode). On the 5505, I set up my outside interface and vlan to connect via PPPoE and it seems to work fine. I recently purchased an ASA 5508 and I've tried...
I am not that familiar with VMware, and I try to use Macs where possible. It looks like the virtual FMC requires VMware. Does anyone know if VMware Fusion on OSX will host it? Thanks. -Pat
About to embark on replacing some 5510 ASA's with 5516X's and have a question. On the ASA's we have the Trend CSC module and I wondered what the Fire power alternative is on the 5516X? Is it just the Cisco ASA 5516-X Threat Defense License Bundle or ...
$ sudo traceroute -A 177.130.95.149traceroute to 177.130.95.149 (177.130.95.149), 30 hops max, 60 byte packets 1 216.182.226.228 (216.182.226.228) [AS14618] 37.388 ms 216.182.226.64 (216.182.226.64) [AS14618] 16.184 ms 216.182.226.240 (216.182.226.24...
Dear all, I had a very unusual situation. I have two firewalls 5516-x in active-standby mode. I have configured NTP server locally and synchronize the fmc and sourcefire with that but after that suddenly my firewalls condition shifted reverse i.e t...
Generally, there are well documented steps to reimage ASA to run FTD (or vice versa), example : https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/reimage/asa-ftd-reimage.html However, if you already have an existing ASA 5500-X ...
Hello We're trying to implement a new cisco asa 5508 firewall on our site, but we're having a few issues. Currently the firewall when plugged in allows general internet traffic from the internal interface but none of the internal servers which have ...
