On several occasions, I’ve confirmed FTD 1k and 2k platforms having performance issues routing and inspecting traffic and even crashing (Cisco bug reported) on 7.0.1 code revision. It was confirmed on 1120 and 2110. One interesting find is it did not affect FTD 1010 platform and potentially a setup with …
Tag: Troubleshooting
Came across this issue which got me stumbled at first. I had a VTI tunnel to Azure with static route pointing to the next hop. FTD# sh run route | i 10.16.0.0 route Tunnel10-Azure 10.16.0.0 255.255.0.0 10.2.80.2 1 Tunnel interface was up. FTD# sh int ip br Tunnel10 10.2.80.1 YES …
I saw this issue with redundant internet up-links. Check routing for VPN gateway. I had encrypted subnet routing through secondary Internet connection but secondary VPN gateway IP was still routing through default primary Internet gateway. Once all the routing matched, VPN tunnel came up. …
After deploying Remote Access VPN settings I’ve updated the default domain field under the Group Policy (GP) but got a deployment error. Lina messages ErrorCode: CFG-IN-PROGRESS Severity: error Description: com.cisco.ngfw.messages.DescriptionType@8b7c834 FMC >> clear configuration session OBJECT I was able to update the domain with some random name but not the …
I knew there were bugs related to External Radius Servers in ISE 2.7 but did not think it was that tricky. I had two policies in my policy set. One for testing and one for production. Radius Sequence was working fine on the testing policy so I’ve added it to …