We are currently using FMC and ISE to manage admins who can log into FMC and the firewalls in our environment. We were considering how we can better secure our management connections, specifically the communications between our firewalls and ISE. Cur...
Forum Posts
Dear Team, Can anyone suggest me 300-710 SNCF self study guide book. I cant find on cisco press.I found 350-701 SCOR book but i need 300-710 SNCF, Please help to suggest a good detail book
Hi All, I am faced with a very strange problem. My internal network contains IPs from 172.16.X.X subnet. I want to block a certain IP from appearing in traceroute(this IP belongs to an uplink hosted in my own AS) and I can easily do things anyone sug...
Hello, Cisco FTD4115 does not see SSD disk after replacement, FXOS Version: 2.16(0.128), ROMMON Version:1.0.19, does anyone know the solution?
HelloWe have two FTDs 1120 in remote offices that have, after being upgraded to 7.2.5 from 7.0.4, lost connectivity to FMC in our main office.Both devices have been initially configured in the main office and then shipped to the remote office. Manage...
We have a "critical security finding" even though our ASA SSLVPN web portal login page is shutdown on our ASA 5525. The "test" that is done is an http get is sent to https://<external IP>:443/+CSCOE+/logon.html and a response is returned. The respo...
I am trying to get this working to no avail. Whether I exclude the domain I want to resolve locally or include the domain I want to resolve through the tunnel the client sends all requests through the tunnel. I am specifying a DNS server on the gro...
Hi to all,after upgrading from 7.6 to 7.7 RTP traffic as well as FTP stopped working. I disabled media inspection with flexconfig and media started working again.Now our users complain about problems with ftp.I suppose that if i disable ftp inspectio...
Hello everyone, I'm currently preparing for the CCIE Security lab exam. While all the required virtual machines for the lab are available for download, I was wondering if there are any options to practice with the physical equipment mentioned in the ...
Hello,I've successfully configured an external syslog server on FDM, and it's receiving messages correctly. I've set the Default Action Block to send syslog messages, and those are arriving as expected on the external server (among other messages).Ho...
Hi All, I have recently setup two Cisco Secure Firewall 3105s and we have attempted a bunch of times to HA pair them but seem to keep running into issues. Firstly, both were registered with Cisco smart licenses and could reach internet and resolve et...
I'm in a situation where I need to use the FTD as the dhcp server for both my guest and internal subnet. At present I have it configured to give out my internal domain and dns servers. Can I use a FlexConfig configuration to modify the dns settings...
Resolved! License Help For ASA5510
Hello All,Longtime user of Cisco Community support and usually always find what I am looking for in here.I acquired an ASA5510 from a friend who was recycling old hardware in server cabinets and he asked me if I wanted this device, along with a few o...
Hello. I'm trying to update a firewall running FTD, managed via FDM, from version 7.0.1-84 to version 7.4.2-172. I uploaded "Cisco_FTD_SSP_FP1K_Upgrade-7.4.2-172.sh.REL.tar" on the System Upgrade section on the Updates page of FDM. When I click Up...
I’m experiencing latency issues with my internet service. I've identified that the setting "Intrusion Policy used before Access Control rule is determined" is enabled under the Advanced Settings of my APCs. My firewall is currently handling around 18...
