Cisco SFR Cant Ping its Default Gateway?
Jul25

Cisco SFR Cant Ping its Default Gateway?

Posted By on Jul 25, 2019

KB ID 0001575 Problem This is a strange one? I was deploying FirePOWER to a pair of ASA 5550-8-X firewalls in Active / Standby failover last week. After each SFR was updated (via ASDM.) I could no longer ‘ping it’, the SFR itself could ping everything on the same VLAN, APART from its own default gateway, (which was an SVI on the Cisco 3750 switch it was connected to). This happened every time I updated the SFR, (or...

Read More
Updating FirePOWER Module (From ASDM)
Sep14

Updating FirePOWER Module (From ASDM)

Posted By on Sep 14, 2017

KB ID 0001348  Problem Normally I don’t like upgrading the SFR this way. But then I tend to install new firewalls set them up and walk away, so its easier (and a LOT quicker) to simply image the module to the latest version and then set it up. Like So; Re-Image and Update the Cisco FirePOWER Services Module This week I had an existing customer, who has an ASA5508-X but wasn’t using his FirePOWER, I’d installed the...

Read More
FirePOWER – ‘DataPlaneInterface0’ is not receiving and packets
Sep11

FirePOWER – ‘DataPlaneInterface0’ is not receiving and packets

Posted By on Sep 11, 2017

KB ID 0001344  Problem While replacing a FirePOWER Management console, I got this error; Interface Status Interface ‘DataPlaneInterface0’ is not receiving any packets   Solution A look a the health monitor showed me the same thing; Firstly, common sense dictates, that this is a live firewall and traffic is actually flowing though it? In my case the traffic simply needed to be ‘sent though’ the module. Execute...

Read More
Cisco Add FirePOWER Module to FirePOWER Management Center
Apr25

Cisco Add FirePOWER Module to FirePOWER Management Center

Posted By on Apr 25, 2016

KB ID 0001178  Problem If you only have one FirePOWER service module you can now manage it from the ASDM; ASA 5505-X / 5508-X Setup FirePOWER Services (for ASDM) But if you have got more than one, and you can manage them centrally with the FirePOWER Management Center, (formally SourceFIRE Defence Center).  WARNING:  If you are going to use FMC DON’T register your licences in the ASDM, they all need to be registered in the FMC.  ...

Read More
Cisco Firepower Services – Change IP and DNS Addresses
Apr07

Cisco Firepower Services – Change IP and DNS Addresses

Posted By on Apr 7, 2016

KB ID 0001173  Problem If you change your internal LAN addresses its easy to re-ip the firewall but what about the FirePOWER module? If you manage your SFR from the ASDM it will tell you what the IP is, but it won’t let you change it?   Solution Change the FirePOWER Module IP Address Log into the firewall, then open a session with the SFR module. find the physical address of the module (usually eth0, but check). Petes-ASA#...

Read More