Claudiu Cismaru

Member Since: Dec 30, 2016

User Badges:
  • Cisco Employee,

English
Claudiu Cismaru commented on Cisco Firepower 9300 with FTD 6.x in Intrusion Prevention Systems/IDS 2 months ago

It is not configurable through UI on FTD. However, starting with 6.2 version of FTD you can use...

Claudiu Cismaru commented on Firepower SSL decryption doesnt work well in Sourcefire SSL Appliance 2 months ago

Could you provide with some screenshots of the events from the Table view of events for the ones...

Claudiu Cismaru commented on Ping hostname failed in Firepower Module in FireSIGHT System / 3D System 2 months ago

Kurt, I asked about the correct nameserver as there's a Linux behavior that you encountered. First...

Claudiu Cismaru commented on ASA to FTD migration tool in FireSIGHT System / 3D System 2 months ago

Are object which can be used in ACP rules or wherever it requires to add an interface.

Claudiu Cismaru commented on Ping hostname failed in Firepower Module in FireSIGHT System / 3D System 2 months ago

On the FMC console, see whether you have the correct nameservers. For this, run: cat /etc/resolv....

Claudiu Cismaru commented on Trying to SCP to FMC for upgrade purposes in FireSIGHT System / 3D System 2 months ago

SCP is used to copy files. It won't install any patch. Doing a fresh installation is a last resort...

Claudiu Cismaru commented on Sourcefire Linux OS v4.10.0 (build 773) Sourcefire 3D Sensor 1000 v4.10.3.8 (build 8) in FireSIGHT System / 3D System 2 months ago

Because is Linux and it has nothing to do with the admin permissions, but with Linux handling of...

Claudiu Cismaru commented on Sourcefire Linux OS v4.10.0 (build 773) Sourcefire 3D Sensor 1000 v4.10.3.8 (build 8) in FireSIGHT System / 3D System 2 months ago

Try with: /usr/local/sf/bin/usertool.pl -p "admin Your_New_Password" Replace Your_New_Password with...

Claudiu Cismaru commented on Trying to SCP to FMC for upgrade purposes in FireSIGHT System / 3D System 2 months ago

Are you ashamed to tell TAC that you get that error and they to guide you?

Claudiu Cismaru commented on Sourcefire Linux OS v4.10.0 (build 773) Sourcefire 3D Sensor 1000 v4.10.3.8 (build 8) in FireSIGHT System / 3D System 2 months ago

The admin account should work, by default, in UI. Unless the password was changed in the UI, but in...

Claudiu Cismaru commented on FirePOWER SSL Decryption using Wildcard Certificate in Sourcefire SSL Appliance 2 months ago

James, I believe he asked something a bit different. Actually, I don't think he owns a CA cert,...

Claudiu Cismaru commented on Definition of proxy users, tor and tunnel in FireSIGHT System / 3D System 3 months ago

I haven't tried, but you can try to add the lists on Whitelist, deploy the policy and then check in...

Claudiu Cismaru commented on how to see the no. of sessions on the FTD in FireSIGHT System / 3D System 3 months ago

Theoretically, all ASA's lina show commands should be available, after you connect to diagnostic-...

Claudiu Cismaru commented on Definition of proxy users, tor and tunnel in FireSIGHT System / 3D System 3 months ago

It's unclear what you want to achieve. Can you refine your question? The sensors can detect user...

Claudiu Cismaru commented on ASA Firewpower High Availability in License 3 months ago

It could, with Firepower, under some conditions. If you are referring though files, it can block...

Claudiu Cismaru commented on [HA]FireSIGHT Management Center licenses in License 3 months ago

Hey, Marvin, I don't understand why the forums system brings up some topics which has no answers...

Claudiu Cismaru commented on Firepower 6.2 - action block but SYN - SYN/ACK goes through in FireSIGHT System / 3D System 3 months ago

This happens only when you have a rule, with layer 7 matching on at least one of the App ID or URL...

Claudiu Cismaru commented on [HA]FireSIGHT Management Center licenses in License 3 months ago

Is there any reason why would you use 5.3.x version of the software? It has been obsolete for a...

Claudiu Cismaru commented on Observing traffic from AWS VPC to Cisco FMC .How to identify if it is genuine? in FireSIGHT System / 3D System 4 months ago

Where did you see this traffic? In FMC? Is this passing through your sensor? Or in another tool?

Claudiu Cismaru commented on HTTP block page response shows up for HTTP webpages but not for HTTPS webpages in FireSIGHT System / 3D System 4 months ago

It displays only for decrypted traffic. If you don't have a decrypting policy, is not technically...

Claudiu Cismaru commented on Block response page not displaying for blocked SSL (https://) URL in FireSIGHT System / 3D System 4 months ago

Nothing in special. Just use a Decrypt with Resign policy.

Claudiu Cismaru commented on 5508 with Sourcefire as proxy in License 4 months ago

Firepower and ASA can not act as a HTTP proxy. Are not designed for such feature.

Claudiu Cismaru commented on Observing traffic from AWS VPC to Cisco FMC .How to identify if it is genuine? in FireSIGHT System / 3D System 4 months ago

What kind of traffic? What ports. Is it initiated by the FMC or initiated from outside? Give us...

Claudiu Cismaru commented on SFR Block with reset in FireSIGHT System / 3D System 4 months ago

Want to know about the ACP rules block or IPS rules block? They are different things. Also, it...

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

Have an endpoint where you can troubleshoot from (used to try to access one of the destinations in...

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

You're doing it wrong. The URL categories should be configured on the URLs tab of the ACP rule, not...

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

Also, a screenshot from System -> Integration page, where URL filtering configuration is shown.

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

FTD means Firepower Threat Defense. Attach an screenshot of your Access Control Policy.

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

> Actually I dont use FTD ,I am using version 6.2 Firepower and my sensor is 5525 Are you using...

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

Well. Assuming that you have the license active, I need to know what is the ASA model you have....

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

They block. Maybe there's something wrong on your setup. Or there could be other configuration...

Claudiu Cismaru commented on How to find FireSight patch version in FireSIGHT System / 3D System 4 months ago

Marvin, you're right, that is the correct answer :) However, is not something that an user should...

Claudiu Cismaru commented on Issue about Custom IPS Rules in Snort Rule Coverage 4 months ago

I couldn't reproduce your issue. For me it fires. Are you sure you deployed the ACP after making...

Claudiu Cismaru commented on How to find FireSight patch version in FireSIGHT System / 3D System 4 months ago

Diego, You can open a TAC case and make a enhancement request to have such screen on the product.

Claudiu Cismaru commented on http inspection on or off? in Firewalling 4 months ago

What has http inspection to do with "after Win7 deployment"? Can you be more concise what exactly...

Claudiu Cismaru commented on Adding a layer2 firewall between VLANS with same subnet. in Firewalling 4 months ago

FTDs in ASA with Inline Sets. Acts like a bump on the wire, without having to change anything in...

Claudiu Cismaru commented on Firepower SSL decryption doesnt work well in Sourcefire SSL Appliance 4 months ago

Could you provide with some screenshots of the events from the Table view of events?

Claudiu Cismaru commented on How to find FireSight patch version in FireSIGHT System / 3D System 4 months ago

Diego, As there could be multiple hotfixes at a moment on the same verison, the actual version of...

Claudiu Cismaru commented on migrating virtual FMC and vFTD to new esxi host in License 4 months ago

The idea of Smart Licenses was the licenses to not be bound to the MAC addresses of the machines as...

Claudiu Cismaru commented on Access Control Policy apply failed (Not a HASH reference) in FireSIGHT System / 3D System 4 months ago

There could be multiple reasons. The best way to handle this is to reach out to TAC, if you don't...

Claudiu Cismaru commented on Firepower Upgrade using ASDM -Bad Gateway in FireSIGHT System / 3D System 4 months ago

If your setup works with java version 7 and doesn't work with latest version, it could be due to...

Claudiu Cismaru commented on FTD running in ASA Mode in FireSIGHT System / 3D System 4 months ago

FTD is running in ASA AND Firepower mode in the same time. There's no separate way of operations....

Claudiu Cismaru commented on Issue about Custom IPS Rules in Snort Rule Coverage 4 months ago

Add metadata with service http. See whether it fires now. When you test, add logging to the ACP...

Claudiu Cismaru commented on Send HTTPS/SSL traffic to Firesight IPS sensors with no decryption? in FireSIGHT System / 3D System 4 months ago

Non-encrypted portion is not actually non-encrypted. If it's part of the SSL protocol, the SSL...

Claudiu Cismaru commented on Unable to Block Mobile applications, torrent and Facebook videos on Firesight Management Center 6.0.1 in FireSIGHT System / 3D System 4 months ago

Does the system detect the applications for the flows? Can you check on the connection events? (you...

Claudiu Cismaru commented on Send HTTPS/SSL traffic to Firesight IPS sensors with no decryption? in FireSIGHT System / 3D System 4 months ago

It's Claudiu, not Claudia :) http://www.cisco.com/c/en/us/td/docs/security/firepower/60/...

Claudiu Cismaru commented on IPS interface configuration in Intrusion Prevention Systems/IDS 4 months ago

I have already provided them to you. See my yesterday's message. If you didn't get an email, it...

Claudiu Cismaru commented on Do you think FTD image will eventually allow us to make changes from CLI? in Firewalling 4 months ago

FTD is more than LINA + snort side, like Elektra SFR module is for ASA software. It's some sort of...

Claudiu Cismaru commented on Import Multiple URLs to FirePower in FireSIGHT System / 3D System 4 months ago

You can have only Security Intelligence for URL List / Feed in Objects... Does it help? Or to have...

Bio

Passionate about technology.

User Badges:
  • Badge.
    Cisco Employee

Claudiu Cismaru's Stats

Points39
Discussion started 0
Answers marked as Correct 4
Endorsed 0
Content Rated 3