Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have an HA pair of FTD 2140 firewalls, running 7.0.1. They are managed by an FMC running 7.0.4. The firewall is running BGP with its upstream and downstream neighbors. I would like to enable BFD between the HA firewall and the upstream and downstre...
I am in the process of setting this up for Microsoft O365 to use direct Internet access when on VPN, rather than full tunnel. As I define the custom attributes to match for the dynamic routing directly to Microsoft rather than through the tunnel, I'...
We currently have Cisco/SourceFire 8250 IPS appliances in line on our inside and DMZ firewall interfaces. Some of the firewalls are being periodically overwhelmed by bursty traffic, so ethernet flow control has been enabled, which seems to address t...
We are trying to set up Auto Deploy for UCS B200 M3 blade servers. Our setup has the chassis connected to dual 6248 Fabric Interconnects. We were successful in getting this to work when the blades were identified via MAC address configured on the D...
We have an ASA 5540 running ASA v 8.4(7). I am attempting to edit an existing service object-group, to add a few additional ports. However, when I attempt to do so, I get one of two problems.If I type 'object-group service FOO' and enter it, I get:...
Did you ever resolve this? The FCIP profile (tunnel that connects over the IPStorage connection) determines the bandwidth that will be used. For example:fcip profile 10ip address 10.0.0.74tcp max-bandwidth-mbps 1000 min-available-bandwidth-mbps 200...
Here are some tips that make it easier to manage dynamic split-tunnel domain lists...1. Use ASDM to manage them! I know, we all love to hate ASDM, but it makes list management easier. You can basically develop or modify your domain list, comma-sepa...
Hello Marvin,I am trying to see how to enable bgp soft-reconfiguration on an FTD firewall managed in FMC. I don't see any options to configure it, and the FMC Help doesn't show it either.When I connect to the FTD firewall via CLI, and issue the comm...
Thank you for that information. I ended up opening a case with Cisco TAC, and they provided the same response that you did. We implemented it and it is working great.
It looks like that feature request may actually be what added the checkbox in FMC web GUI, under BGP Neighbor configuration, to enable BFD. But that's where it says that FlexConfig is used to actually configure BFD on the FTD, and then the checkbox ...
