About paultribe

paultribe · 12-05-2025

I have a customer who has a single FMCv that is managing 4 x FTD 4115 appliances. The customer is using the FTD 4k's as follows: 1 HA pair for Firewall functionality only with Threat so config includes:- Interfaces, Static Routes, Objects, ACLs, NAT ...

paultribe · 04-04-2025

How do I configure SSH sessions to TIMEOUT after 5 minutes on FTD 1K devices, I know you can set console timeout under platform policy, but what about SSH session? Is the console timeout the same thing or do I have to do this somewhere else - for exa...

paultribe · 08-22-2023

We have a situation where: 1) Customer is replacing their Headend Firewall / VPN device (SonicWall); with FTD 1000 using FTD.2) They have several Dynamic S2S VPNs on Draytek routers.3) In testing we found out that the Headend FTD when using dynamic S...

paultribe · 12-03-2020

Is there any simple way to determine the average packet size of IP packets or Ethernet frames that are traversing interfaces on an ASA running FTD code, I know we have the packet capture tool and could probably obtain a smallish snapshot of traffic a...

paultribe · 04-22-2020

I do quite a few ASA to FTD migrations and many customers want a "Big Bang" approach. I am familiar with all the Migration tools that Cisco offer but they do have their limitations. The limitation for me is that I have a customer who has 200 static r...

paultribe · 12-10-2025

Thank you for your response Marvin - I have a question? Rather than take the old one offline; as the old one is stand alone, would it be possible to make the new one the old ones "HA mate", complete the sync up etc, then switch-peers so the new Hyper...

paultribe · 12-10-2025

Thanks Balaji - I will consider this option.

paultribe · 08-30-2023

I can get the debugs posted as I have replicated the issue in a lab environment with FTDv and a real Draytek of the same model. The issue seems to be with the Draytek rather than the FTD when it comes to using RSA sigs; so we are waiting for them to ...

paultribe · 05-30-2023

BEST POST EVER MATE - I have been trying 3-4 days to get 2 FTDs to use RSA Sigs for a S2S VPN and your post fixed it, TOP MAN !!! Thanks so much, its been driving me mad.

paultribe · 11-18-2020

I totally agree I have customer with the same problem and they do use IPS and AMP. 1 cpu is 90% the other 3 are less than 20. This seems a non optimal setup especially with the advent of SASE. Having said that the ASA55x are being phased out I guess ...

Member Since	‎02-06-2009 02:06 AM
Date Last Visited	‎12-12-2025 04:22 AM
Posts	112
Total Helpful Votes Received	1

User Statistics

User Activity

Migrate Production FMCv on ESXi to Hyper-V

SSH and Console IDLE Timeout

Dynamic S2S VPN between Cisco FTD & Draytek

ASA/FTD Average Packet Size

Firepower API for - Script Static Routes

Re: Migrate Production FMCv on ESXi to Hyper-V

Re: Migrate Production FMCv on ESXi to Hyper-V

Re: Dynamic S2S VPN between Cisco FTD

Re: So as no one responded I

Re: ASA 5525-X Hardware Specs Clarification