Hi All, I have Private AMP Cloud, ThreatGrid, ESA, WSA and FMC all integrated together for AMP for Network scenario working. I have just little question. May I manually do HASH lookup in PrivateAMP Cloud like we do in, for example, Talos website? Thanks in advance! ... View more

Hi All, Do I have a chance with ESA to report Attachment types from incoming mails for last 3 months for example? Thanks in advance! ... View more

Hi All, I want to deploy following scenario: I want to create a group for domain servers on AD and configure policy based on that group. So whenever my system administrator needs to have internet access on particular server he can make that server member of created group and WSA will authenticate using machine name based on that group. Is it possible? I think on WSA side it is not configurable and We will need to change configuration on servers that they send machine name for authentication which i headache but I wanted to just confirm.   Thanks in advance! ... View more

Hi All,  I have got fresh installed FireAMP Private Cloud. I wanted to start integration but it give sanity check error as below. Anyone got idea what can be reason? ... View more

Hello All, I am now in the middle of implementing ThreatGrid and Private cloud. Only integrations with FMC,ESA,WSA are left. I have couple of question regarding available features of Integrators:   1)As far as I know in FMC when disposition is unknown and file is sent to analysis (In my case it would be TG) the first file will be downloaded by client. The FMC will start to implement action for that file after TG informed Private Cloud about threat score and PC the FMC in its turn. I wonder whether it is possible to tweak this process. In other NGFW vendors I had capability of sending like snapshot of file and informing that your file is pending analysis. In FMC I did not found any tab for editing this feature of it.   2)How TG will analysis the file with password? Does it have any most-used password database which will try them or something else?   3)In ESA, if esa received a mail with phishing URL but did not detected it as phishing, may i configure it so that it sends all mails to TG with URL which reputation is unknown.   Thanks in advance! ... View more

Hi All,  I have a question which may seem a bit weird to you but it it stuck in my head. When we have PAT device in front of VPN gateway we have to use one of the workarounds which is NAT-T. But my question is in Message 5 and 6 of negotiations gateways send their interface IPs (If hostname not configured) and my gateway sitting behind PAT will put its private IP in payload. However other side is configured to receive connection from Public IP. Should not it create a problem for VPN upcoming?   Thanks in advance!  ... View more

Hello everyone. I have a FTD 2130 firewall sitting behind internet router which is just route all public range we purchased to firewall. In FTD we do not have any Public IP attached to internet, we use Public IPs on NAT configurations with Proxy-ARP. We have one IP that is for Global VPN connections that is not used in any configuration of FTD. However we use it in Internet router in 1-to-1 static nat configuration. The design is as below:   FW(192.168.1.1) -------(192.168.1.2)INET Router(Public IP)-------CLoud. I have VPN connections working properly with third-party companies. From show commands I see that some of them use NAT-T and some just encapsulates with ESP. I confirmed it from "show ip nat translations" in router. That is as I expected because I was sure that static one to one NAT should not affect VPN and ESP. NAT-T is for PAT designs.   But the problem is I created simple LAB in virtual environment as same design as above and if I disable NAT-T in one end, VPN becomes UP but connection fail. I suspect it because static nat in router.   Now my question is: If I use static 1-to-1 nat (Not any PORT translation) do I still need NAT-T. From my LAB the answer i get is YES. But from my real environment the answer is NO because i have current connections that are not using UDP 4500 but just ESP.   Thanks in Advance! ... View more

Hi All, We have 4 firewalls: 2 FTD 2130 in HA (Active-Passive) pair and 2 ASA5525x in HA (Active-Passive) pair. In network redesign process my SV asked my to connect them directly. I prefer joining each one with one interface to switch and allocate vlan to them but SV tells he wants without SW directly connection. So, I wonder what will be design of this situation?  Thanks in advance! ... View more

Hi all, I want to ask you a question about language of prompt. I am newbie to UCCX Scripting and creating my first lab scriptis. I have already completed several best practice scripts successfully. Now, I would like to create script with would read information from DB and prompt it. The problem is my native language. For example i am using "Create Generated Prompt" and turning it to a simple prompt which will spell out this "You balance is one hundred twenty three (123) dollar". The problem is integer is spelled out in English by default and some custom languages can be added. My native language, Azerbaijani, is not in the list. How can I solve this problem?   Thanks in advance ... View more