About rcullum

rcullum · 05-10-2022

Hi, This is a v2.7 Patch 7 ISE deployment. I'm trying to import a wildcard cert to use across both my ISE Nodes.in a standard 2 Node deployment. But each time I try and import the Certificate as a wildcard, it 'greys' out the option of choosing betw...

rcullum · 02-28-2022

Is this supposed to happen? I was upgrading the ASA5585-SSP-SFR20 FirePower module from v6.1 to v6.4 via FMC. I expected the SFR20 module to reboot but instead, the entire chassis rebooted. So basically, both my FirePower ASA5585-SSP-SFR20 module an...

rcullum · 11-10-2021

Hi Can you create QoS Policies in FMC/FirePower using DSCP markings. For example, I might want to mark some traffic that traverses my firewall East-West with DSCP 46 EF or at least maintain it. Does Firepower take account of DCSP markings for traffic...

rcullum · 07-14-2021

Possibly looks like we have db corruption. I can browse to the login URL but there is no login screen. If I run DBCheck.pl I get:running database integrity check with the following options:- use exception directory /usr/local/sf/etc/db_exceptions- ch...

rcullum · 08-27-2020

Hi I'm looking to upgrade from ISE v2.3 and had been planning on going to v2.6, as that was the suggested release (one with a star against it) not too long ago. Then v2.7 came out and that has became a suggested release. Now v2.6 is not listed as a s...

rcullum · 03-01-2022

If you running an ASA HA pair with a FirePower module (for IPS) on top, then only the IPS modules are managed via FMC. Regardless of the ASA state (standby/active), the IPS module on each ASA is managed individually in FMC and both FirePower modules ...

rcullum · 11-05-2021

Yes, in FMC, go to the Device Management, select troubleshoot on the device you want to check the rules on. Go to Advanced Troubleshooting. You can run packet tracer from there.

rcullum · 11-05-2021

No, you can't manage your Firepower 2130 with ASA image via FMC. You can manage your FirePower services module on your ASA using FMC, but FMC will only manage that FirePower component. The ASA running ASA code cannot be managed by FMC.

rcullum · 11-05-2021

Hi No, you cannot manage an ASA through FMC:https://www.cisco.com/c/en/us/products/collateral/security/firesight-management-center/datasheet-c78-736775.html If you want centralized management of ASAs, there is/was Cisco Security Manager. Otherwise, u...

rcullum · 08-19-2021

Think that is right command. Try user_map_query.pl -i x.x.x.x without the --ui option. It looks like your command is working but can't find the mapping, so how are you obtaining the mapping database? via ISE? Then try sudo adi_cli session to see wha...

Member Since	‎06-17-2002 01:00 AM
Date Last Visited	‎02-02-2023 05:43 AM
Posts	134
Total Helpful Votes Received	53

User Statistics

User Activity

Wildcard cert import keeps going into Primary Admin Node System Certs

5585-X FirePOWER SSP-20 module upgrade caused whole chassis to reboot

firepower dscp marking

FMC 6.2 No login webUI and mysqld down

Suggested ISE Release - 2.6 or 2.7?

Re: Update Firepower Module from FMC

Re: Simulate traffic in FMC

Re: Management through the FMC

Re: Management through the FMC

Re: What is the CLI Command to see user id with IP Mapping in FMC 6.7.