cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

AMP license in FMCv

arabdashti
Beginner
Beginner

Dear friends.

One of our clients installed new Firepower 2140 + FMCv.

Because of security measures the FMC ( ver 7.0.1) is connected to the internet through firewall by proxy settings. after initial installs and successfully updates, the attached warning is always shown.

Warning text:

        " AMP for firepower status

          Cannot connect to cloud "

Customer already purchased but not limited to : 

FPR2140T-NGFW-K9

L-FPR2140T-TM= 

L-FPR2140T-TM-5Y  

FS-VMW-2-SW-K9

note : no endpoint or threat grid license is purchased.

All of updates are downloaded successfully and licenses are activated in FMCv.

We do not know if this warning is related to network connectivity to cisco cloud or there is another issue ?

Your helps would be appreciated.

6 REPLIES 6

balaji.bandi
VIP Guru VIP Guru
VIP Guru

Thanks balaji.

The main issue concept in this question  : 

https://community.cisco.com/t5/network-security/fmc-cannot-connect-amp-cloud/td-p/3718454

leads to this document: 

https://www.cisco.com/c/en/us/support/docs/security/sourcefire-fireamp-private-cloud-virtual-appliance/118290-technote-fireamp-00.html 

 

it is how to test and solve connection to cisco cloud which actually is not very helpful because telnet client is not available in fmc version 7.0.1.

Finally I came to realize that it is waste of time and I changed the connection to the internet and problem solved.

Instead of proxy server we stablished site-to-site VPN. Update traffic is passed through tunnel.

thanks

I have not tested 7.X code as of now, sure eventually I do so, thank you and glad you are able to fix the issue, and appreciate your input.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

By the way, you can telnet from FMC in all versions.

> expert
admin@fmc7-2:~$ sudo su -

We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:

    #1) Respect the privacy of others.
    #2) Think before you type.
    #3) With great power comes great responsibility.

Password: 
root@fmc7-2:~# 
root@fmc7-2:~# telnet tools.cisco.com 443
Trying 72.163.4.38...
Connected to tools.cisco.com.
Escape character is '^]'.
^]
Connection closed by foreign host.
root@fmc7-2:~#

hello marvin

we can not use telnet command.

 

root@FMC7:~#
root@FMC7:~# sudo su -
root@FMC7:~#
root@FMC7:~#
root@FMC7:~# telnet
-su: telnet: command not found
root@FMC7:~#

 

thanks.

That's odd. I also checked two other FMC 7.0 (one VM, one hardware) and see it's not there. Yet my FMC 7.2 has it.

I seem to recall it was in FMC 6.x previously but don't have one handy to verify.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: