About tahscolony

tahscolony · 02-25-2025

I have one of these running to connect to CDO (or whatever Cisco names it today) and what I can't find is if it has been patched with recent security updates. I found a doc with details on doing an update, BUT, they don't work. cdo@sdc:~$ sudo su sd...

tahscolony · 02-14-2025

I ran into this yesterday. I have a pair of 3120 chassis, both configured the same with 3 instances, one is an HA pair, the other 4 independent IPS FTD. One chassis, no issues making changes and saving, the other, if I try to modify one of the inst...

tahscolony · 01-30-2025

I tried migrating our 5555-X to a 3120 instance HA pair. For the most part, it migrated, however only ONE WAY. Our firewall is set up with inbound AND outbound ACLs and only the inbound ACL's migrated, leaving a huge load of unmigrated network object...

tahscolony · 10-11-2024

While trying to insert WCCP into the FTD, the configuration was wrong, TAC gave me the wrong type of ACL which broke the configuration of our running FTD. I have very limited knowledge of what or how flex config is. I need to remove the wccp part of ...

tahscolony · 10-08-2024

This might sound strange, but its an interim setup. I have a pair of 3120 in Multi-instance setup, One instance is transparent FTD to replace 7125 Firepowers in inline mode. I have the first instance set up on the outside interface of the firewall (A...

tahscolony · 02-25-2025

You will need to take the original PFX and break it apart with openssl and reassemble into a new PFX that contains the CA chain certificate.openssl pkcs12 -in <id_cert.pfx> -nocerts -out privateKey.key enter import passphrase create key passphrase...

tahscolony · 02-18-2025

I had done a restore to the previous day before it acted up which allowed me to delete the instances and recreate them, but that led to another issue with hung Certificates, so had some DB work to do to clear it up. Supposed to be corrected in the n...

tahscolony · 10-11-2024

After trying to use Linaconfigtool I found a builtin template to disable WCCP that I applied as flex config policy and it worked, so my FTD is fully operational finally.

tahscolony · 10-11-2024

After some review, it was determined this setup could cause a split brain if the FTD drops out and the two routers can't talk to each other. I resolved it by mirroring our old Firepower configuration by inserting the firewall in between the IPS. Cas...

tahscolony · 10-10-2024

I took the inside inline pair out of the equation, that resolved the issue. Going to create a new instance that looks at files and malware, ignore geoblocking to let the outside handle all that, and use that to look at the inside interface from the f...

Member Since	‎05-26-2015 09:41 AM
Date Last Visited	‎03-04-2025 12:50 PM
Posts	185
Total Helpful Votes Received	21

User Statistics

User Activity

Secure Device Connecter updates

FMC Error Request Timed Out. Retry after sometime when saving cahssis

Asa Migration tool, is it ready yet?

Flex Config help

Passing WCCP through transparent FTD to ASA

Re: Firepower: Unabble to add a wildcard certificate to a HA-cluster

Re: FMC Error Request Timed Out. Retry after sometime when saving cahs

Re: Flex Config help

Re: FTD with dual routers

Re: Issues with WSA whan FTD IPS is enabled