Started this simple upgrade for Firepower Management Center (FMC) from version 6.2.0 to 6.2.2 and ended up with TAC case and many troubleshooting hours. It was a non-patched install of 6.2.0. Readiness Check passed but after 70% of the actual upgrade I got an error: System call to mkdir(/var/sf/sifile_download) Failed: …
Tag: Sourcefire
One day FirePOWER IPS alerts went quiet for some time and I got concerned if IPS engine or my reporting tool were malfunctioning. I started looking online for a quick way to check it but surprisingly did not find anything useful. I needed something simple and quick. I did not …
For the last few days I was working on and off troubleshooting Splunk eStreamer client issue where application (App) was running but no IPS or File/Malware Events were populating panels. Log files under /opt/splunk/etc/apps/eStreamer/log were generated but for some reason App was not pulling them in. Eventually it would fail …
Once you complete Firepower Hardware Platform configuration as discussed in the previous post you can proceed with Firepower Threat Defense (FTD) setup which is a lot easier and more intuitive. More information regarding configuration, updates, and upgrades can be found at the following link. Components: FTD: 6.2 Start by connecting …
As you know Firepower Management Center (FMC) version 6.x does not require unit license (2, 10 or 25). If you ever wondered how many sensors you can ACTUALLY support on virtual FMC appliance the answer is 25. And it is a hard limit which does not depend on the Sensor model, …