I am trying to get this working to no avail. Whether I exclude the domain I want to resolve locally or include the domain I want to resolve through the tunnel the client sends all requests through the tunnel. I am specifying a DNS server on the gro...
I tried in the FTD CLI and also in "system support diag" and can't seem to find duplex status. Where did they move this too? FTD is v7.4.2.2Thanks
Hi,I have two Firepower 2100 series devices clustered and managed by FMC version 7.4.2. Previously, when I was using FMC 7.2, I had configured time ranges on some rules, and they were working correctly. However, after upgrading to version 7.4, the ti...
Hi!FMC2500 is going to be EoL soon so we've decided to migrate to FMCv instead, since we already have all the hardware we need inour VMware datacenters.Current setup:2 x FMC2500 (in HA mode) v7.0.4(55).New setup, migration to virtual machines in VMwa...
This is an old question for an old firewall, but I've not found any definitive answer.I have found PLENTY of answers regarding the allowance of traceroute *through* a firewall.That is NOT what I'm asking.I need the firewall itself to perform the trac...
I have a handful of FP 1010s that came with FTD installed. These will be used for a basic S2S VPN connection back to a FP3130. I'd like to manage these via FMC but I'm struggling with the documentation to understand a clear path to getting this acc...
I have an HA pair of FMC's running v7.6.1.My Standby device is showing an alert "Process Status - the data correlator process exited x time(s)", additionally the Health Monitor is showing "SFDataCorrelator Down" and running pmtool status | egrep -i '...
"I've configured syslog forwarding on my Cisco ASA to send logs to Secure Network Analytics, and the ASA's logging configuration is complete. However, I've noticed that the UDP TX counter for this destination is consistently at 3, which suggests logs...
Hello everyone, I'm currently preparing for the CCIE Security lab exam. While all the required virtual machines for the lab are available for download, I was wondering if there are any options to practice with the physical equipment mentioned in the ...
Trying to get a port forward setup for a server behind the firewall and having an issue getting it to work. The traffic appears to be dropping after touching the outside interface, even though an outside ACL is created for this traffic. Here are the ...
I cannot deploy due to Cisco Client file that is on the FTD. It was fine before and I could deploy no problem. Now that Snort has an update I need to deploy but cannot due to error:The disk is (or was) full during extraction.WARNING: Unable to instal...
After an upgrade from 7.2.5 to 7.4 I lost the interface Eth0. Already added a new NIC on VM as an workaround, or even deleting a file and rebooting but no success rm -rf /etc/modprobe.d/blacklist-sfpacket.conf https://bst.cisco.com/bugsearch/bug/CSCw...
ISE 3.3.0 running on 3615 appliancesIOS-XE 17.9.5 on 9800-40 WLCsWe have some odd behaviour with a new hotspot portal. Everything up to authentication appears to be working correctly - user is prompted to sign in on connecting to the SSID, redirect i...
I have imported an ACP and it is showing under the Default-Policy... is there a way to have it not indented? If I delete the Default-policy will it also delete the "internal" policy showing below it?
We’re encountering the same issue on the newer 7.6 release with 12xx firewalls. Has anyone identified the root cause or received any insights from Cisco? Thanks in advance.
