Community,In Firepower, is there a way to whitelist a specific IP address in the IPS policy so that the IPS policy does not inspect the traffic but where the IP is still subject to regular access control rules? A 3rd party wants to do external scans ...
Forum Posts
Hi, We need to exclude the source IP address of our external vulnerability scanner, so it will not be blocked by the IPS.The point is to simulate external attacks without IPS protection.Adding an access rule on the top with no IPS inspection is not a...
Hello, Lately my company is having some issues with some users that have a common problem. The problem is that the FMC is seeing identities as the wrong users, users who aren't actually logged onto the computers (Windows 10). ISE logs show the correc...
Is there any plan to support ASDM on Windows server 2016 OS?
Resolved! FMC / FTD Management IP/FQDN Problem
We just changed a Module SM-56 on a Chassis 9300. Everything works great, only that now on the FMC the Device has now an IP instead of FQDN under management. All other Modules, and Devices are using FQDN for the Management Address, and it was working...
Resolved! Is FMCv supported on vmware ESXI 8.x?
FMC docs state it runs on ESXI 7.0 but nothing higher unless I missed something.
Hi Experts,I hope everyone is doing fine and well. I have this problem with my FTD for more than a month already. I will start this out with what happened at first.I have a ASA5508X hardware running on FTD7.0.6 with FMC 7.3.1.End of September we inst...
Hi dears,when entered the switch to universal P L R from F D M (Firepower Device Manager) , and copy the request code to smart license reservation, appears error as shown the attached image. how to enable !!
Good Morning all, I am working on a new network deployment and at the top is a Cisco Firepower 1120. I am going down to two datacore switches from the firepower and would like each datacore switch to have it's own uplink from the Firepower. Each in...
Hi everone ASA5510 can't connect ASDM and http port 443 and i know ASA 5510 EOL I use command "show run all ssl" command show "ssl encryption rc4-md5 des-sha1 3des-sha1"how to reslove problam? thankyou
HelloI have been trying to access my FPR 2100 firewall for around a week but without success.Before the problem occurred I freely connected to the port management and typed the address 192.168.45.45 in the browser to access the device manager web int...
Resolved! Cisco ASA1120 Active/Standby Failover
Hello,I am currently configuring two Cisco ASA 1120s for Active/Standby failover. So far it is failing. This is what I have done so far. The version that these ASAs are running is Cisco Adaptive Security Appliance Software Version 9.16(4)42. They als...
Hello Team,Is it possible to filter VPN remote access with mac-addresses as a second layer factor security in addition to username/password on FMC?If yes, any ideas to approach this?Thanks.
Resolved! FTD Module FPR9K-SM-56 Faulty DIMM / RAM
We are having a Faulty SM-56 (in a Firepower 9300)slot/1/fault/F1546Description:Security Module 1 is in failed state. Error: Security module is downgraded (or) not acknowledged. Reason: DIMM or CPU degradedWe even know which DIMM is bad: Memory Array...
Hello, I have built an IPSEC site to site VPN tunnel from one of our Cisco ASA to Fortigate firewall. The tunnel is up and running and traffic is passing though the tunnel as expected. Now I have a requirement to track the tunnel status via SLA monit...
