I have a handful of FP 1010s that came with FTD installed. These will be used for a basic S2S VPN connection back to a FP3130. I'd like to manage these via FMC but I'm struggling with the documentation to understand a clear path to getting this acc...
Forum Posts
Resolved! Management Interface x Data Interfaces
Hello,I understood that connections to the FTD itself, cannot be filtered using FDM ACE only.So, I'm looking for the right option where I can ensure that the connections to manage FTD (web/ssh) are disable and not exposed to the internet (default). C...
Resolved! FTD Rules
I'm learning the basics of FTD (FP1010) and doing some tests. Using FDM, I create an ACE Rule to block ICMP (any type, any network). It’s the first rule on top of other policies, setup as Block and log. I can see the rule being triggered if I try to ...
Ok, I am in a pickle here. The security requirments for my Cisco firepower 2140 require a pre-login banner to be posted. As far as I can tell there is not place within the FDM to configure a banner, and when I do it via cli I get the error telling me...
Hi All, I have brought secure client licenses and wants to renew it on fmc. Do i need to just refresh authorization or anything else need to do
LAN:192.168.88.254/24ASA5505(branch)WAN:60.0.0.1------Internet------WAN:59.0.0.1CP1555(HQ)LAN:192.168.169.254/24Cisco Adaptive Security Appliance Software Version 9.2(3)Checkpoint 1500 Appliance Version R81.10.10 (996002945)Here's partial running con...
I have a use case where I need to deploy FTDv (FTDv100) in a HA pair utilizing two physical servers with the ESXi (7.0.3 - Dell Version) hypervisor, one FTDv 7.4 instance on each. Following the Cisco deployment guide, I am attempting to leverage SR-I...
Resolved! Default Action Block - Log
Hi !I'm start learning FTD (FP1010) and trying to figure out why I can't see external blocked SYN packets on FDM web interface (Events Tab). They are visible only on syslog messages, like this example: 07-07-2025 10:29:14 Local4.Error 192.168.0.1 Jul...
Resolved! CISCO FIREWALL 3105
Hello We just got a cisco FIREWALL FPR3105-NGFW-K9 and very exited but we have failed to get the an ip address through DHCP even after connection to he INSIDE PORT. As a mater of fact the port is not lighting at all but the out side port is lighting ...
Hello,I have set up a FTD managed by cdFMC for remote access VPN. For authentication I use SAML with Azure AD as an IdP. The authentication itself is working fine, but the user identity of the session viewed in FMC has "Discovered Identities" as it's...
Resolved! Talos Connectivity Problem
Hi to all ,i am getting many messages as the following:Severity: criticalModule: Talos CommunicationDescription: 3 modules failed:* URLDB- Failed to retrieve beaker inventory* LSP- Failed to retrieve beaker inventoryMy subscription is active (it expi...
Hi All, A critical vulnerability, CVE-2025-32463 with CVSS score of 9.3 reflecting its high risk, has been discovered and affecting Sudo in Linux OS. This vulnerability allows attackers or users to exploit sudo's -R (or --chroot) option to execute ar...
I currently have 2 sites, and each site has (2) FTDs in active/passive failover. When looking at the Platform Settings, they both share a single policy. I need to add another policy for each pair to change their syslog server settings to go to differ...
Hi We are planning on migrating configuration on 4110's acting as an internet perimeter firewall to a dedicated container instance running on 4225's. Problem I see right now is that there are 150+ tunnels configured on the 4110's and it doesn't look ...
Currently, we have one of our NGFW configured for VPN use and able to connect to it successfully. We are exploring the use of DAP for added control in who can connect to our VPN, so, we had configured some basic settings. If we don't have it assign...
