Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
29082
Views
6
Helpful
17
Replies

Disabling SIP

Go to solution
man3mar3n
Level 1
Level 1

‎11-11-2018 07:35 PM - edited ‎03-12-2019 07:05 AM

Hi,

 

I need to disable SIP in my FTD.

 

However, I don't have the options to issue the below command

 

configure inspection sip disable

.

I only have the below:

 

audit_cert             Change to Audit_cert Configuration Mode
configure              Change to Configuration mode
exit                   Exit Configuration Mode
expert                 Invoke a shell
history                Display the current session's command line history
kdump                  Enable or disable kernel crash dump data collection
log-events-to-ramdisk  Configure Logging of Events to disk
log-ipconnection     Configure Logging of Connection Events
logout                 Logout of the current CLI session
manager                Change to Manager Configuration Mode
network                Change to Network Configuration Mode
password               Change password
show                 Change to Show Mode
system                 Change to System Mode
user                   Change to User Configuration Mode
vmware-tools           Configure state of VMware Tools

 

Can someone enlighten me on this issue?

Thank you very much.

 

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
matty-boy
Level 1
Level 1
In response to man3mar3n

‎11-12-2018 12:07 AM

So this is ASA with FP services? You’ll need to disable SIP inspection through ASDM or ASA CLI then, not through Firepower. 

View solution in original post

0 Helpful
17 Replies 17

Go to solution
k.nandakumar
Level 1
Level 1

‎11-11-2018 08:24 PM

You have to use FlexConfig in FMC to disable SIP. 

You'll find how to configure FlexConfig in below link. Have given some example. you may have to check the config to SIP. 

 

https://www.youtube.com/watch?v=OMspnE9fq08 

 

 

Regards,

Nanda 

Securing Network With Firepower Threat Defense

0 Helpful

Go to solution
matty-boy
Level 1
Level 1

‎11-11-2018 11:24 PM

From the chevron '>' prompt, please show us the result from typing...

 

> configure ?

 

You should be able to disable it from command line if you wish.

 

Cheers,

Matt

0 Helpful

Go to solution
man3mar3n
Level 1
Level 1
In response to matty-boy

‎11-11-2018 11:30 PM

Hi,

 

Below are the results from > Configure ?

 

> configure

audit_cert Change to Audit_cert Configuration Mode
kdump Enable or disable kernel crash dump data collection
log-events-to-ramdisk Configure Logging of Events to disk
log-ips-connection Configure Logging of Connection Events
manager Change to Manager Configuration Mode
network Change to Network Configuration Mode
password Change password
user Change to User Configuration Mode
vmware-tools Configure state of VMware Tools

 

 

0 Helpful

Go to solution
Abheesh Kumar
VIP Alumni
VIP Alumni

‎11-11-2018 11:38 PM

Hi,

Go to FTD clish

> configure inspection sip disable

will help you to disable sip inspection.

 

HTH

Abheesh

Go to solution
man3mar3n
Level 1
Level 1
In response to Abheesh Kumar

‎11-11-2018 11:47 PM

Hi,

 

That is what Cisco manual says as well.

But I don't see the option in the FTD clist.

I only see the below :

 

> configure

audit_cert                           Change to Audit_cert Configuration Mode
kdump                                 Enable or disable kernel crash dump data collection
log-events-to-ramdisk        Configure Logging of Events to disk
log-ips-connection             Configure Logging of Connection Events
manager                             Change to Manager Configuration Mode
network                              Change to Network Configuration Mode
password                            Change password
user                                    Change to User Confiuration Mode
vmware-tools                     Configure state of VMware Tools

 

0 Helpful

Go to solution
matty-boy
Level 1
Level 1
In response to man3mar3n

‎11-11-2018 11:48 PM

Please post output from > show version

0 Helpful

Go to solution
man3mar3n
Level 1
Level 1
In response to matty-boy

‎11-11-2018 11:49 PM

Hi,

 

Below are my > sh version

 

> show version
-----------------[ xxxx-Firepower ]-----------------
Model                     : ASA5515 (72) Version 6.2.2 (Build 81)
UUID                      : 5795d1ba-741e-11e8-898d-dcdefb6d8f3b
Rules update version      : 2016-11-29-001-vrt
VDB version               : 271
----------------------------------------------------

0 Helpful

Go to solution
matty-boy
Level 1
Level 1
In response to man3mar3n

‎11-11-2018 11:56 PM

Weird. Are you logged in as a user with full admin rights?
0 Helpful

Go to solution
man3mar3n
Level 1
Level 1
In response to matty-boy

‎11-12-2018 12:01 AM

Hi,

 

I logged in as admin.

 

There is only 1 user which is admin.

0 Helpful

Go to solution
Abheesh Kumar
VIP Alumni
VIP Alumni
In response to man3mar3n

‎11-12-2018 12:02 AM

are you managing this with FDM or FMC. If FMC you can do this via Flex config

Create a Flex Config Object and enter below command

policy-map global_policy
class inspection_default
no inspect sip

Then bind this Flex object to Flex Policy.

 

HTH

Abheesh

Go to solution
man3mar3n
Level 1
Level 1
In response to Abheesh Kumar

‎11-12-2018 12:04 AM

Hi,

 

I don't have FMC.

 

The firewall is with ASDM.

 

 

0 Helpful

Go to solution
matty-boy
Level 1
Level 1
In response to man3mar3n

‎11-12-2018 12:07 AM

So this is ASA with FP services? You’ll need to disable SIP inspection through ASDM or ASA CLI then, not through Firepower. 

0 Helpful

Go to solution
man3mar3n
Level 1
Level 1
In response to matty-boy

‎11-12-2018 12:19 AM

Hi,

 

Yes, this is ASA 5515x with Firepower Services.

 

I already disable it in ASA.

 

So that should be fine.

 

Thanks.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top