About ccieexpert

ccieexpert · 06-21-2024

Community is great. but I feel that there are some much needed enhancements. First that whenever I go to the community page, i see the most recent hits where someone has responded to a community post. Technically that is not the one that real needs a...

ccieexpert · 05-17-2024

⚙ Cisco TAC Best Practices from an ex-TAC veteran ️ Tips & Tricks for TAC case openers I have long contemplated writing a "TAC Best Practices" document. Inspired by Alexis Bertholf insightful post on the subject, I have finally compiled my own ver...

ccieexpert · 02-14-2025

that is correct. phase2 especially crypto ACL can be configured diferrently so it could be a subset or superset and that can cause issues in neogitation... some devices will tear down IKE/ipsec completely after such a failure in 1 p2 sa... debugs are...

ccieexpert · 02-09-2025

the base license should have failover .. have you tried to use failover and see any issues https://www.cisco.com/c/en/us/td/docs/security/firepower/70/fdm/fptd-fdm-config-guide-700/fptd-fdm-license.html **please rate helpful posts**

ccieexpert · 02-08-2025

The failover capability comes built into your base license, so no additional purchase is needed for failover However, there are some requirements for your HA pair: Identical hardware same software versionBoth require matching feature licenses **ple...

ccieexpert · 02-07-2025

I would test this on a machine without intune and see if the same problem happens. if the problem happens, then you may want to open a TAC case ..also try as a test 5.1.7.80 which is the latest for isolation purposes and see if it is fixed in that ve...

ccieexpert · 02-07-2025

Hello I think your tests are not the same .. I think you should let things stabilize. The firewall failover or flapping multiple times is not the feature is meant to serve although it works. The real use case is for a standby unit to takeover from a ...

Member Since	‎03-21-2023 04:26 PM
Date Last Visited	‎10-29-2025 07:32 AM
Posts	513
Total Helpful Votes Received	139

User Statistics

User Activity

Allow community search for posts with Zero responses

Detailed Cisco TAC Best Practices by ex-TAC Veteran

Re: IPsec pkts no sa (send)

Re: Failover license

Re: Failover license

Re: Secure Client VPN upgrade not extracting UI folder

Re: Cisco FTD Failover Behavior