Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have Firepower 1120 in HA cluster and problem with NAT.I have IP addresses (A/B/C means subnets, doesn't matter i think for explanation) A.10 - main outside public IP **bleep**A.9 - main gatewayB.x - additional public IPs from ISP (got 5 of them, f...
Hi I'm using buildin DHCP on FTD, but I need to find what hostname has DHCP client. Is there any way to find it on device? show dhcpd binding all command shows only ip address and MAC address.
Hello I'm using internal PKI with Active Directory user certificates deployed using GPO. I want to use them as client certificate only authentication in my FTD managed by FMC.For my Access interface I have public CA signed certificate, so my non doma...
I have 2x FPR1120 in HA managed by FMC, i've executed "show managers" on both and one of them shows some kind of error, both of them running softwareCisco Firepower Extensible Operating System (FX-OS) v2.13.0 (build 1022)Cisco Firepower 1120 Threat D...
HelloI have Firepower 1120 and configured s2s VPN to 3rd party using parameters as belowIKEv1 Encryption AES-256 Hash SHA Lifetime: 21600IPSec Encryption AES-256 Hash SHA Lifetime: 3600DH14 With NAT nat (local_ip_pool,outsite_interface) source stati...
I have enrolled certificate for device, using SCEP, in the windows CA (IPSec offline) and set that enrollment to IKEv2 Identity Certificate. I also have that windows CA under "show crypto ca certificates" and certificate issued by that CA.Is that wha...
<165>:2023-03-22T15:10:19Z: %FTD-vpn-5-752004: Tunnel Manager dispatching a KEY_ACQUIRE message to IKEv1. Map Tag = CSM_outsite_map. Map Sequence Number = 2.<164>:2023-03-22T15:10:19Z: %FTD-vpn-4-752010: IKEv2 Doesn't have a proposal specified<167>:2...
