Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Greetings to the Braintrust. We are currently running some Cisco Catalyst 4507R+E switches which I need to move on from due to them falling out of support. These work great for us for their current role. I have potential access to some Cisco Nexus N9...
Trying to figure out why my newly deployed FTD device still insists on inspecting SMTP traffic. Cisco Firepower 2130 Threat Defense running 7.0.1-84 code. Telnet to my Internet mail host behind my FTD on port 25 from the Internet like so:telnet <mail...
I am setting up a new FTD 2130 HA pair for use in a production environment. This is my first deployment with FTD so trying to test as much as possible before deploying these devices to understand as best I can how they work. I set up a bunch of NAT ...
Trying to configure my new to me FTD 2130 devices for AnyConnect VPN remote access sessions. Coming from ASA 5515-X devices and Running 7.0.1-84 code on my FTD's. This is our only FTD device so I am configuring it using FDM. I am finding mixed inform...
Cisco ASA 5515X Firewall. Getting a coordinated syn attack against one of our websites hosted behind the firewall.. My ASA's CPU is going to 100% and not allowing legitimate traffic through during this attack. It completely shuts down. It is configur...
Thanks very much for the reply here. So I am using FDM for managing this device. I have the Intrusion Detection policy set up for the inbound rule allowing SMTP traffic. IS this what you are referring to. I do not seem to have an “Advanced” section o...
>> you say "I set the simultaneous logins to 1. FDM wouldn't allow me to set it to 0". Its true, but I resolved unchecking the flag.What flag are you speaking of here?>> Now I understood that the user have to configure under the "USERS" directory in...
Not sure if this is still an issue for you. So I just deployed my first FTD setup last night. Despite some oddness with the SSL bits for AnyConnect, the LDAP/attribute mapping worked perfectly. Thanks to some documentation from Cisco TAC, I set up th...
Thanks very much for the reply here. So for some context here is what I have: Nteblock behind FTD (Inside Interface) - 10.20.0.0/16Netblock for remote office - 10.10.0.0/16RA VPN Netblock - 10.20.90.0/25 We have basically two sites: A Colo site and a...
So since not a single reply to this I reached out to Cisco TAC. For anyone possibly coming across this in the future, I was finally able to get the attribute maps configured. Its available as part of the API, but not currently available as part of th...
