Hey everyone,I'll start off by saying I am new to Firepower, but experienced in ASA and CLI. I have configured 2 FTD 3105's managed by FMC and ported over the old ASA 5516 config over to the Firepower unit. Recently had an issue cabling the new FTD's...
Forum Posts
Hello Together,I configured on Cisco FMC 7.6 the DHCP Server for one Sub-Interface because we have to route this VLAN on the Firewall. I add the VLAN tag and configured the switch also for this Vlan. Problem is I cannot get a lease. I saw on Cisco IS...
Hello Experts, I have a question regarding the behavior of Access Control Policy (ACP) on Cisco Secure Firewall Threat Defense (FTD) 7.4. Environment:- FTD 7.4- Managed by FDM- IPv4 only- Access Control Policy in use Configuration:1. Rule #1 (Top rul...
Resolved! Upgrade FTD A-A Cluster via FMC Cluster
what is the upgrade procedure for FTD A-A cluster via FMC cluster. First doing such upgrade in live environment.FMC version > 7.4.2.1 to version 7.6.2-329FXO version > 2.14.1 to version 2.18.0.520Below are the files downloaded from Cisco:Cisco_Secure...
What are my options for password recovery of the admin around that doesn't want to be sync'ed to AD?
In FMC 7.6.x, we configured two ISE servers as RADIUS External Authentication Object.The ISE are forwarding the authentication to our Windows AD.The user now makes one bad login attempt to FMC and the AD account is being locked. AD is set to lock the...
Resolved! Routing on Site to Site Policy Base VPN
I have deployed a Site to Site Policy base VPN tunnel and I have a requirement that some of the traffic has to go via the VPN tunnel but remaining should go out via the outside interface (not via tunnel). The VPN is configured on the same Outside int...
Hi,I attempted to update a Cisco Firepower 2110 Threat Defense firewall to v7.4.3 from 7.4.2.2. It passed the readiness check but then errored during the upgrade and rolled back. It provided the error below in the log:user: 'admin' cannot be created,...
Hello everyone i want to configure identity policy on FMC with Active Directory Kerberos, on guide written The Realm you select must be configured with an AD Join Username and AD Join Password to perform Kerberos captive portal active authentication....
Hello,Having a problem while trying to upgrade an asa 5506-x.This is a factory reset device currently running 9.5.1 and trying to get to 9.16.4.25.I can get there, but after a reboot the boot image is gone and I have to manually add it and wr mem.wen...
I have configured a Security Zone or Interface Group that contains multiple interfaces (each has its own unique IP/subnet). When I use either the Security Zone or Interface Group as the destination interface object in a NAT rule. How would I know whi...
So I deployed two Firepower 1010s in FTD mode in August -- and they both stopped working today -- FDM showed the ports as all greyed out -- except for the MGMT which was green. The physical LEDs on the 1010 and switch showed as green. License says ...
Hi all, We currently have our FMCv on version 7.0.8.1, however, looking at upgrading our VMware environment to ESXi 8 so planning to upgrade the FMCv to 7.4.3 first. Is anyone running FMCv 7.4.3 on ESXi 8 and if so have there been any issues I need t...
Resolved! Firepower MCv Device License
Hi All, Under Firepower MCv Device License, It shows 100000 as the purchased license while i purchased for only 2 firewalls, can anyone explain why the quantity is 100000??
In an IC3000 Computing Gateway, Cyber Vision Sensor version 4.1.1 was deployed. The basic configuration has been completed. The eth0 interface has been added to a bridge, and the remaining interfaces have been configured correctly. However, the Cyber...
