Deploy Cisco FirePOWER Management Center (Appliance)
Nov30

Deploy Cisco FirePOWER Management Center (Appliance)

KB ID 0001263 Dtd 30/11/16 Problem You have been able to manage your firewalls Internal SFR module for ¬†while using the ASDM Setup FirePOWER Services (for ASDM) For most people that’s fine, but if you have a lot of FirePOWER devices to manage that does not scale well. In those cases you should use theFMC ¬†(FirePOWER Management Center). Here ‘Im going to use the Vmware virtual appliance, (at time of writing there is no...

Read More
Cisco SFR Session – Cannot Exit To Command Line
Nov22

Cisco SFR Session – Cannot Exit To Command Line

KB ID 0001259 Dtd 22/11/16 Problem This tripped me up once before, and I didn't document it! Normally if you have a console session open with your FirePOWER Module, (that you opened with a 'session sfr' command), then you can just quit, and exit back to the firewall by typing 'exit', like so; ciscoasa# session sfr Opening command session with module sfr. Connected to module sfr. Escape character sequence is 'CTRL-^X'. Cisco ASA5512...

Read More
Cisco – Cannot Connect to the ASA FirePOWER Module
May10

Cisco – Cannot Connect to the ASA FirePOWER Module

KB ID 0001182¬†Dtd 10/05/16ProblemThere’s an alarming amount of people who have contacted me about this error;Cannot connect the the ASA FirePOWER module.Cannot connect the the ASA FirePOWER module.. Check that it is correctly configured and on the network. It’s also possible that the management address is being translated by NAT.Please verify¬†the IP address/Hostname and port.¬†SolutionYou see this error when YOU attempt to...

Read More
Cisco FirePOWER User Agent – Use With the FirePOWER Management Console
Apr27

Cisco FirePOWER User Agent – Use With the FirePOWER Management Console

KB ID 0001179 Dtd 27/04/16ProblemFirePOWER Management Center, will give you a wealth of information on traffic/threats etc. Usually it will tell you what IP the offenders are on, but if you want to know what a USER is doing, then that means you have to look though logs see who had what IP, at what time etc.So you can install the FirePOWER User Agent on a machine, (this can be a client machine, though I usually put it on a member...

Read More
Cisco Add FirePOWER Module to FirePOWER Management Center
Apr25

Cisco Add FirePOWER Module to FirePOWER Management Center

KB ID 0001178 Dtd 25/04/16ProblemIf you only have one FirePOWER service module you can now manage it from the ASDM;ASA 5505-X / 5508-X Setup FirePOWER Services (for ASDM)But if you have got more than one, and you can manage them centrally with the FirePOWER Management Center, (formally SourceFIRE Defence Center). WARNING:  If you are going to use FMC DON'T register your licences in the ASDM, they all need to be registered in the...

Read More
Cisco FirePOWER SFR Module Cannot Ping
Apr10

Cisco FirePOWER SFR Module Cannot Ping

KB ID 0001174 Dtd 10/04/16ProblemOn a newly deployed FirePOWER service module I wanted to test connectivity and attempted to ping a public IP address. This is what happened;> expert  admin@Petes-SFR:~$ ping 8.8.8.8  ping: icmp open socket: Operation not permittedMy first though was, "Well you¬†have to set a default gateway on the SFR when you set it up, so the firewall is probably blocking ICMP". So I checked the default...

Read More