Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- :
- About ashaw216
Stats
Member since
03-17-2004
83
Posts
15
Helpful
1
Solution
Created by
ashaw216
in Cisco Bug Discussions
in Cisco Bug Discussions
07-12-2019
04:10 AM
07-12-2019
04:10 AM
Are there any solutions for an actual real-life situation? Simulations are one thing...
... View more
Created by
ashaw216
in Intrusion Prevention and Detection Systems (IPS - IDS)
in Intrusion Prevention and Detection Systems (IPS - IDS)
03-28-2019
07:00 AM
03-28-2019
07:00 AM
Here's the situation: we have a vulnerability scanner that scans our external IP range. The traffic appears to come from our internet egress IP. The Firepower IPS drops the traffic, but I'd like a way to prevent it from showing up in the Level 0-2 Intrusion Events (i.e. reduce the noise). When I look at the Packet Bytes for the scanner, I see that it's inserted some header information. How can I create a rule that prevents alerting based on 1) the traffic coming from our egress IP and 2) the packet containing this added header?
... View more
Labels:
Created by
ashaw216
in Cisco Bug Discussions
in Cisco Bug Discussions
09-18-2018
04:39 AM
09-18-2018
04:39 AM
Qamar,
While it is a VM, it's running with the recommended 16GB of RAM.
The issue occurs in Chrome, Edge and IE, for multiple people.
The certificate being used is the built-in one with the 2048-bit key, so I'm not sure that the bug you posted applies.
Output from the command you mentioned:
root@mifpmc01-pva:/Volume/home/admin# pmtool status | grep -i gui mysqld (system,gui,mysql) - Running 12108 httpsd (system,gui) - Running 29381 sybase_arbiter (system,gui) - Waiting vmsDbEngine (system,gui) - Running 12112 ESS (system,gui) - Running 12143 DCCSM (system,gui) - Running 12813 Tomcat (system,gui) - Down VmsBackendServer (system,gui) - Down mojo_server (system,gui) - Running 12187
... View more
Created by
ashaw216
in Cisco Bug Discussions
in Cisco Bug Discussions
09-17-2018
12:40 PM
09-17-2018
12:40 PM
@Qamar Islam wrote:
Hi,
What version you have installed?
For version 6.2.1 you need to first meet the minimum requirements of the Cisco FMC specifications.
Title of this thread says it all... 6.2.2
... View more
Created by
ashaw216
in Cisco Bug Discussions
in Cisco Bug Discussions
09-17-2018
07:12 AM
09-17-2018
07:12 AM
Is there any way around this? We have restarted the FPMC but the issue isn't going away. It's been several HOURS now!
... View more
04-13-2016
04:23 AM
Problem solved: we switched to Websense (now Forcepoint), which doesn't have this issue.
... View more
04-13-2016
04:21 AM
https://n169.meraki.com:443/login/dashboard_login
https://n169.meraki.com:443/o/SsylNc/manage/organization/overview
Example:
ttps://n169.meraki.com:443/o/SsylNc/manage/organization/overview
(2)
CONTENT TYPE: -
URL CATEGORY: Web-based Email
... View more
04-11-2016
04:28 AM
So it looks like around 5:48am EST on 4/10, Cisco recategorized the Meraki cloud management console from "Computers and Internet" to "Web-based Email". I'm not sure how they thought this was a good idea, since many organizations (including mine) block the Web-based Email category.
And this for the management console of their own product.
I know it's easy to add an exception, but really??
... View more
Labels:
01-25-2016
04:42 AM
Where is Cisco with this enhancement request? We received an attachment with a .7z extension which endpoint security found to be infected with malware. This wasn't caught by the WSA for the reason listed in the original post above, which was over 11 months ago.
... View more
12-12-2015
06:33 PM
This will be the second upgrade of this appliance in which we've had this problem. Previously, we were upgrading from 7.5 to 7.7. The upgrade went through, we were told the appliance was rebooting, but the ping never died indicating that the device never went down during the reboot. Now we're upgrading from 7.7 to 8.0.7 and the same thing is happening. Last time I had to drive in a push the button on the appliance to turn it off, then back on again (shades of IT Crowd). Anyone else seen this behavior?
... View more
Labels:
10-02-2015
06:07 AM
Our account manager has mentioned that this update may require a memory upgrade of the appliance (!) -- what are the requirements for it?
... View more
09-30-2015
06:39 AM
Do we have any more indications when "SOON" will be? More and more sites are moving to TLS 1.1 / 1.2 and becoming inaccessible unless we bypass them (which opens us up to potential malware infection if the site becomes compromised.) I'm honestly at a total loss how Cisco still doesn't support these protocols, which have been in use for YEARS. TLS 1.1 in 2006 and TLS 1.2 in 2008 !!
... View more
09-09-2015
05:17 AM
Was this ever increased? We have a user who tried to send an 18MB file and is getting the same error.
... View more
08-12-2015
10:28 AM
There are several HTTPS sites which, when we try to access them, give varying errors (Firefox "Secure Connection Failed", IE "Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting..." even though these are turned on, and Chrome "The webpage is not available ERR_CONNECTION_CLOSED"). Within the proxylog on the WSA170 I see these lines: Warning: HTTPS : - : Unknown algorithm for public key in X509 certificate When I run an SSL test against the site it says it supports TLS 1.0 - 1.2, but not SSL. I'm wondering why we're not able to connect.
... View more
Labels:
11-14-2019
We have a separate intrusion policy for ingress trafffic from the
internet to our DMZ servers. When ...
Created by
ashaw216
in Intrusion Prevention and Detection Systems (IPS - IDS)
03-28-2019
03-28-2019
Here's the situation: we have a vulnerability scanner that scans our
external IP range. The traffic ...
09-18-2018
Qamar, While it is a VM, it's running with the recommended 16GB of RAM.
The issue occurs in Chrome, ...
09-17-2018
@Qamar Islam wrote: Hi, What version you have installed? For version
6.2.1 you need to first meet th...
09-17-2018
Is there any way around this? We have restarted the FPMC but the issue
isn't going away. It's been s...
05-24-2018
Here is the behavior I'm seeing: Within Intrusion > Events, there is a
line of traffic with (in this...
05-17-2018
Does no one use FP IPS, or no one reads the board, or is Cisco Support
Community not as much into th...
05-16-2018
Here is what I'm trying to do: we have a edge mail appliance that is
receiving bounce emails that ar...
04-20-2018
This document was invaluable for getting this fixed --
https://www.cisco.com/c/en/us/support/docs/se...
04-18-2018
6.1.0, under SSL Status it says "Do Not Decrypt (Decryption Error)" We
are using Decrypt - Resign.
04-18-2018
Running FP 8130 appliances, within FP Management we are seeing
"Decryption Error" for port 443 traff...
04-12-2018
We are running FMC virtual 6.2.2. I am trying to implement External Auth
under Users > External Auth...
Public Statistics
| Date Registered | 03-17-2004 10:00 AM |
| Date Last Visited | 11-15-2019 12:03 AM |
| Total Messages Posted | 83 |
| Total Helpful Votes Received | 15 |
