Category: Gotcha’s & Cavates

Cisco Cloud-Delivered Firewall Management Center

by Trevor Butler, posted in Gotcha's & Cavates, Modern Security

Starting with Firepower 7.2 Cisco announced the ability to manage these firewalls using a Cisco hosted Cloud-Delivered Firewall Management Center (cdFMC). I recently had a project setting up cdFMC for the first time so I figure I would go over what I learned and show how to access cdFMC, how to import policies, and join … Continue reading Cisco Cloud-Delivered Firewall Management Center

No-NAT’s on HA ASA firewalls: How to break HA (Split Brain Active/Active)

by Trevor Butler, posted in Gotcha's & Cavates

Story Time! Last week I learned the hard way why you should not trust NAT conversion tools when dealing with No-NAT's on an ASA. To fully understand this story lets back up a bit and Ill give you the high level details. I have been working on a project for the last month or so … Continue reading No-NAT’s on HA ASA firewalls: How to break HA (Split Brain Active/Active)

Enabling Management Port in Firepower Threat Defense

by Trevor Butler, posted in Gotcha's & Cavates

This is going to be a quick blog, but I just ran into this issue last night when converting an ASA516-X from standard ASA code, to new Firepower Threat Defense (FTD) code.  Let me first paint the picture; I was converting two ASA's from the old to the new to use in our lab at … Continue reading Enabling Management Port in Firepower Threat Defense

Moving Firepower Management Center: Dealing with Licensing Errors

by Trevor Butler, posted in Gotcha's & Cavates

Today I finally got around to re-configuring our Firepower Management Center (FMC) after we moved it from my companies data center to our head office (we were moving servers from a whole subnet over so we recreated the subnet here at the head office and moved the servers over like for like and without the … Continue reading Moving Firepower Management Center: Dealing with Licensing Errors

Deploying Layer 3 Meraki Switches in Warm Spare

by Trevor Butler, posted in Gotcha's & Cavates

Being a Cisco Partner I get the joy of learning new technology in the Cisco family.  I was tasked to deploy a complete Meraki network with full redundancy at each layer of the campus.  Everything was going smoothly until it came time to deploy the two Meraki MS320's in warm spare mode. Before I tell … Continue reading Deploying Layer 3 Meraki Switches in Warm Spare

Upgrading Cisco Nexus Switches with Duel Homed FEXs

by Trevor Butler, posted in Gotcha's & Cavates

The Problem One issue I ran into a few months ago while at the customer site was upgrading Cisco Nexus 5500 series switches that had duel homed Nexus 2000 series FEXs.  For anyone who has looked into the process of upgrading Cisco's Nexus series switches you would find that there are two ways to do … Continue reading Upgrading Cisco Nexus Switches with Duel Homed FEXs