Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Anyone run into issues with FTD, in what appears to be random cases the application detection engine doesn't classify a flow with AVC application protocol / client information?
I have seen it on SYSLOG, NTP, NetBIOS-ssn (SMB [TCP 445]), and other app...
We recently converted some 1231 and 1242 access points from autonoumous mode to unified mode. The primary application for the wireless network is the use of teklogix RF handhleds (7535 and some older teklogix models) using the teklogix PTX controlle...
I have a 2821 that I am using in a IPSSEC VPN setup and the rotuer is experiencing very high CPU utilization when traffic rates are high (40 Mpbs). I am concerned because I have another 2821 router using the on-board VPN module and its configuration ...
I have a client that is attempting to both firewall, and VPN (remote access and site to site) functions on a single 5510 unit. They seem to have problem when the Internet bandwidth becomes congested and the remote access VPN user suffer badly from p...
Lore,
The facility and severity is more relevant to the SYSLOG server than the configuration with FMC. Usually the default of LOCAL0 and severity of INFO is fine.
You then need to add the SYSLOG server entry you created on each access control poli...
You will need to have TAC disable SIP or any other inspection. They have a method to access a read/write LINA CLI.
BTW, there is a SIP inspection bug in FTD 6.1 / ASA 9.6.2 with failover that will cause a crash on FTD.
-Ralph
Ran into a similar issue, and it turned out that I didn't have a access control policy applied. Once I applied the default policy the patch / update applied sucessfully.
The error logs in /var/log/sf/Sourcefire_3D_Device_S3_Patch-X.X.X.X/200_pre/ ...
You can manage the 5506 locally or through a FireSight Management Console. There are some things you cannot do locally, I believe some of the correlation tasks are an example. I also think there will be a big different in the amount of events that ...
