About davparker

davparker · 12-06-2024

We are moving locally managed (FDM) FTDs to FMC. We are choosing to re-provision rather than run the migration tool. What is the best procedure to follow in terms of re-licensing the FTDs. Is it best the deactivate the license in FDM prior to switchi...

davparker · 09-30-2024

We just renewed our Cisco contracts. Come to find out our Cisco Secure Firewall Management Center for Virtual expires on April 30, 2025. This was not flagged during the renewal process. We are licensed via a Smart Account. Apparently our license stil...

davparker · 09-18-2024

We have a managed router solution on our WAN. We don't have direct access to the router, configs, logs, etc. (Inherited this design).MRS <-> C9300 (layer3)At each location the C9300 switch is also configured as the DHCP server.At one location, the pr...

davparker · 08-22-2024

I just implemented a correlation policy to scan New Host Discovered and Unknown Operating System rules using NMAP. I have a test box in the network protected by FTD. To test the policy, I deleted the test box host record then started generating traff...

davparker · 08-15-2024

Hello,I'm trying to configure Cisco Secure Firewall ACP File Policy to exclude Windows Updates from being scanned. I inserted an ACP rule just above the rule with the File Policy. It simply allows traffic to Microsoft Updates or Windows Updates with ...

davparker · 12-07-2024

I went through this in a lab. The FTD cli warns you to disable the licenses in FDM before deleting the local manager. It wasn't obvious to me how to delete the assigned license in the Smart License Portal if you miss this step.Thanks

davparker · 12-05-2024

Sidetracked on a routing project. Back on FMC. I labbed up the scenario by which one converts locally managed FTD's (FDM) in an HA pair to be managed by FMC. I did break the HA, peeled one off, changed mgmt VLANs (readdressing) then registered it wit...

davparker · 08-23-2024

I found the Cisco Secure Firepower documentation on setting up decryption to be lacking. If you are in an Active Directory environment, this video may be useful.https://www.youtube.com/watch?v=tAIdcZ3EBiwOnce you have the Sub-CA enabled and are able ...

davparker · 08-23-2024

Yes, network discovery is enabled sometime prior to implementing the correlation policy. It had already detected my test box previously. I also schedule weekly nmap scans on the FMC for the network. The host profile was built out. I just deleted the ...

davparker · 08-23-2024

Have you tried a rule where you block the detected application? You could try inserting that about the rule that blocks the URL list.

Member Since	‎04-14-2023 01:48 PM
Date Last Visited	‎12-25-2024 06:20 PM
Posts	47
Total Helpful Votes Received	9

User Statistics

User Activity

FDM to FMC license transfer

EOS EOL Cisco Secure Firewall Management Center for Virtual

DHCP Snooping C9300 switch acting as a DHCP server

Network Discovery and Correlation with Scan New Host

Cisco Secure Firewall File Policy exclude Windows Updates

Re: FDM to FMC license transfer

Re: Redeploy FDM HA-FTD into FMC

Re: Blocking TikTok app on Firepower 2140

Re: Network Discovery and Correlation with Scan New Host

Re: Blocking TikTok app on Firepower 2140