Cisco FTD: AMP/URL Filtering/Threat Detection and AVC
KB ID 0001686 Problem This brings me to the end of my recent FTD articles. Although this is not a complete run though of all the capabilities, it will point you in the right direction to enable; AMP Inspection. URL Filtering. IDS/IPS Inspection. AVC Inspection. Solution Each of these is a ‘Licensed Feature’ which means it’s going to cost you. Not only that, but you need to have the licences in your Cisco Smart...
Cisco FTD (and ASA) Creating AnyConnect Profiles
KB ID 0001685 Problem A few days ago I did an article on Deploying Cisco AnyConnect with the Cisco FTD, there I glossed over the AnyConnect profile section. For a long time now, we have been able to edit the AnyConnect profile from within the firewall (if we are running ASA code!) But for the FTD we need to take a step backwards and go back to using the ‘offline’ AnyConnect profile editor. Solution Firstly you need to...
Windows Server DHCP Failover & Load Balancing
DHCP Failover KB ID 0001488 Problem Applicable to: Server 2012/2016/2019/2022 Even though we have had this functionality for a while, I’m still seeing people deploy DHCP scopes (split 80/20) across two servers? You can deploy multiple DHCP servers to serve the SAME DHCP scopes, in either load balanced, or hot standby deployment. Solution: DHCP Failover I’m assuming you already have one DHCP server setup and, with a...
Outlook (for macOS) Notifications Stopped Working
KB ID 0001684 Problem Like most of us I spend my working day based around Outlook calendar meetings and entries, I’ve even got birthdays and anniversaries in there. So recently when the notification pop-ups stopped working, it was a potential problem. Occasionally I could hear the notification ‘sound’, but I had to open outlook and change to the notification window to see them. When you are as absent minded as me,...
Cisco ASA VPN Static to Dynamic IP (DHCP)
KB ID 0001683 Problem I had a call with a client last week, they are in one of my employer’s DCs, and their servers are behind a vASA. They had purchased some Meraki MX devices for their IT team who were working remotely (during the Covid-19 lockdown), and were struggling. Normally we would just suggest AnyConnect, but these guys were building new machines for their clients, and needed access directly to the domain from their...