https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703819#M1029141 <P>Using the command you mention is only for the communications between the Firepower appliance and its managing FMC.</P> <P>&nbsp;</P> <P>The interface for local management (via ssh or https) may have a policy on it limiting access to certain subnets. I'd change it back to the default tcp/8305 and get it registered to FMC and then push a platform policy that doesn't prevent your authorized devices from logging in. If you have issues with that, let us know.</P> Mon, 10 Sep 2018 09:14:08 GMT Marvin Rhoads 2018-09-10T09:14:08Z https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703581#M1029138 <P>Hi.</P> <P>&nbsp;</P> <P>I have a question.</P> <P>&nbsp;</P> <P>I config mgmt port 8305 but can't connect ssh or web ui.</P> <P>&nbsp;</P> <P>If i change mgmt port 443 -&gt; web connect but ssh not connect.</P> <P>&nbsp;</P> <P>If i change mgmt port 22 -&gt; ssh connect but web not connect.</P> <P>&nbsp;</P> <P><SPAN>How do I handle this?</SPAN></P> Tue, 12 Mar 2019 13:57:27 GMT https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703581#M1029138 yunsh63 2019-03-12T13:57:27Z https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703586#M1029139 <P>The management interface should be listening on all three of those tcp ports at the same time (subject to any access restrictions you have configured).</P> <P>&nbsp;</P> <P>How are you making the changes you mentioned?</P> Sun, 09 Sep 2018 15:36:15 GMT https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703586#M1029139 Marvin Rhoads 2018-09-09T15:36:15Z https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703589#M1029140 <P>Hi.</P> <P>&nbsp;</P> <P>I can not connect fp7120-k9 to ssh or web ui.</P> <P>&nbsp;</P> <P>But fmc to fp ping test is ok.</P> <P>&nbsp;</P> <P>So i connect appliance and change mgmt tcp port 443. ('configure network management-port 443')</P> <P>&nbsp;</P> <P>And connect web ui to fp.</P> <P>&nbsp;</P> <P>But i can't web and ssh both.</P> <P>&nbsp;</P> <P>Cisco recommend port 8305, but It can't be work.</P> <P>&nbsp;</P> <P>FW is not block 8305.</P> Sun, 09 Sep 2018 15:49:29 GMT https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703589#M1029140 yunsh63 2018-09-09T15:49:29Z https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703819#M1029141 <P>Using the command you mention is only for the communications between the Firepower appliance and its managing FMC.</P> <P>&nbsp;</P> <P>The interface for local management (via ssh or https) may have a policy on it limiting access to certain subnets. I'd change it back to the default tcp/8305 and get it registered to FMC and then push a platform policy that doesn't prevent your authorized devices from logging in. If you have issues with that, let us know.</P> Mon, 10 Sep 2018 09:14:08 GMT https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3703819#M1029141 Marvin Rhoads 2018-09-10T09:14:08Z https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3706035#M1029142 <P>Thank you for your help.</P> <P>&nbsp;</P> <P>I reinstall the OS 6.2.3 and it works very well.</P> <P>&nbsp;</P> <P>Thanks.</P> Thu, 13 Sep 2018 06:19:00 GMT https://community.cisco.com/t5/network-security/cisco-firepower-7120-mgmt-port-issue/m-p/3706035#M1029142 yunsh63 2018-09-13T06:19:00Z