Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello all,We have a link, https://remote.ourdomain.tld which is currently getting hammered by login attempts. Since our VPN uses AD, the failed logins are causing AD account lockouts.We are on Cisco FMC 7.4.2 and the FTD units themselves (FP2140's) ...
Hello all, happy Wednesday.We have a Firepower 2140 on 7.0.1.1 build 11, and prior to yesterday, our outside IP range was limited to a single /27 network. Yesterday as part of a HSRP installation, we got assigned an additional outside range, a /28. ...
We started getting alerts about expired VeriSign certificates from some of our nodes, so we went about the process of replacing them on our CUCM nodes. That process went smoothly. We no longer see the VeriSign certificate in our CUCM nodes. However...
Hello all, We have a Cisco Firepower 2140 and it is running VPN services for us. It is configured such that we can go to https://<hostname>/+CSCOE+/logon.html#form_title_text and login to get the client. However, the problem is the SSL certificate f...
Hello, We are using Cisco IM & Presence / Jabber in our district. We have it configured to use Windows Active Directory as the login provider. We recently changed our DCs from 241/242 to 141/142, as part of migrating from 2008->2016 servers. We man...
Figured it out. We had another FlexConfig defined elsewhere to enable some other features (vpngina).I had to combine the files into one, where the lines became:---webvpnkeepout "503: Service Unavailable"group-policy GroupPolicy_Site_VPN attributes_w...
As stated in the OP, with or without space, I get an error.FMC >> webvpnFMC >> keepout "503: Service Unavailable"TECH-FP-2140-1 >> error :keepout "503: Service Unavailable"^ERROR: % Invalid input detected at '^' marker.Config Error -- keepout "503: S...
As part of option 2, for testing, I did the following:NAT Rule mapping TestVM-IN (10.1.1.67, a vm on our internal network) to TestVM-EXT (63.247.x.y; one of our new external ips).ACL Rule saying ports 80 and 443 are allowed to TestVM-IN.When I try t...
We're on 10.5. I was expecting to find a way to trigger the import, but it looks like CUPS picked them up over night. Thanks! Both CUPS and CUPS-SUB are showing the tomcat-trust from CUCM imported as of this morning.
