Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1491
Views
0
Helpful
6
Replies

AMP license in FMCv

arabdashti
Level 1
Level 1

‎04-16-2022 02:18 AM

Dear friends.

One of our clients installed new Firepower 2140 + FMCv.

Because of security measures the FMC ( ver 7.0.1) is connected to the internet through firewall by proxy settings. after initial installs and successfully updates, the attached warning is always shown.

Warning text:

        " AMP for firepower status

          Cannot connect to cloud "

Customer already purchased but not limited to : 

FPR2140T-NGFW-K9

L-FPR2140T-TM= 

L-FPR2140T-TM-5Y  

FS-VMW-2-SW-K9

note : no endpoint or threat grid license is purchased.

All of updates are downloaded successfully and licenses are activated in FMCv.

We do not know if this warning is related to network connectivity to cisco cloud or there is another issue ?

Your helps would be appreciated.

Preview file
128 KB
0 Helpful
6 Replies 6

balaji.bandi
Hall of Fame
Hall of Fame

‎04-16-2022 02:31 AM

check this thread :

 

https://community.cisco.com/t5/network-security/fmc-cannot-connect-amp-cloud/td-p/3718454

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

arabdashti
Level 1
Level 1
In response to balaji.bandi

‎04-18-2022 05:32 AM

Thanks balaji.

The main issue concept in this question  : 

https://community.cisco.com/t5/network-security/fmc-cannot-connect-amp-cloud/td-p/3718454

leads to this document: 

https://www.cisco.com/c/en/us/support/docs/security/sourcefire-fireamp-private-cloud-virtual-appliance/118290-technote-fireamp-00.html 

 

it is how to test and solve connection to cisco cloud which actually is not very helpful because telnet client is not available in fmc version 7.0.1.

Finally I came to realize that it is waste of time and I changed the connection to the internet and problem solved.

Instead of proxy server we stablished site-to-site VPN. Update traffic is passed through tunnel.

thanks

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to arabdashti

‎04-18-2022 09:51 AM

I have not tested 7.X code as of now, sure eventually I do so, thank you and glad you are able to fix the issue, and appreciate your input.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to arabdashti

‎04-18-2022 10:25 AM

By the way, you can telnet from FMC in all versions.

> expert
admin@fmc7-2:~$ sudo su -

We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:

    #1) Respect the privacy of others.
    #2) Think before you type.
    #3) With great power comes great responsibility.

Password: 
root@fmc7-2:~# 
root@fmc7-2:~# telnet tools.cisco.com 443
Trying 72.163.4.38...
Connected to tools.cisco.com.
Escape character is '^]'.
^]
Connection closed by foreign host.
root@fmc7-2:~#
0 Helpful

arabdashti
Level 1
Level 1
In response to Marvin Rhoads

‎04-18-2022 11:22 PM

hello marvin

we can not use telnet command.

 

root@FMC7:~#
root@FMC7:~# sudo su -
root@FMC7:~#
root@FMC7:~#
root@FMC7:~# telnet
-su: telnet: command not found
root@FMC7:~#

 

thanks.

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to arabdashti

‎04-20-2022 07:57 AM

That's odd. I also checked two other FMC 7.0 (one VM, one hardware) and see it's not there. Yet my FMC 7.2 has it.

I seem to recall it was in FMC 6.x previously but don't have one handy to verify.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card