Can not ping FMC

sam cook · ‎03-13-2018

HI,

I have a new FTD 2110 to be installed:

First step i wanted to connect the management interface to FMC but I can not even ping my local adress :

> show network
===============[ System Information ]===============
Hostname : FTD-1
DNS Servers : 208.67.222.222
208.67.220.220
Management port : 8305
IPv4 Default route
Gateway : 172.30.53.210

==================[ management0 ]===================
State : Enabled
Channels : Management & Events
Mode : Non-Autonegotiation
MDI/MDIX : Auto/MDIX
MTU : 1500
MAC Address : 70:69:5A:7E:8F:80
----------------------[ IPv4 ]----------------------
Configuration : Manual
Address : 172.30.52.52
Netmask : 255.255.254.0
Broadcast : 172.30.53.255
----------------------[ IPv6 ]----------------------
Configuration : Disabled

===============[ Proxy Information ]================
State : Disabled
Authentication : Disabled

>
>
>
>
>
>
>
>
> ping 172.30.52.52
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.30.52.52, timeout is 2 seconds:
No route to host 172.30.52.52

Success rate is 0 percent (0/1)
>

ANy help please ?

Marvin Rhoads · ‎03-13-2018

Are you connected via console?

Is the physical interface used for management up? Please confirm by dropping to expert mode and run:

ifconfig br1

...and share the output if you're able.

sam cook · ‎03-21-2018

thank you :)

it worked in expert mode :)

hashimwajid1 · ‎07-03-2019

Hi Marven

i am also getting the same issue. i can ping from Expert mode but i cannot ping from FTD CLI or diagnostic mode. is there any solution for this. i am also using management interface.

>
> ping 172.23.36.114
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.23.36.114, timeout is 2 seconds:
No route to host 172.23.36.114

Success rate is 0 percent (0/1)
>
>

admin@CUST-FTD1:~$
admin@CUST-FTD1:~$ ping 172.23.36.114
PING 172.23.36.114 (172.23.36.114) 56(84) bytes of data.
64 bytes from 172.23.36.114: icmp_seq=1 ttl=64 time=0.036 ms
64 bytes from 172.23.36.114: icmp_seq=2 ttl=64 time=0.034 ms
64 bytes from 172.23.36.114: icmp_seq=3 ttl=64 time=0.037 ms
^Z
[3]+ Stopped ping 172.23.36.114
admin@CUST-FTD1:~$

Marvin Rhoads · ‎07-03-2019

Doing a ping <destination address> from the clish prompt will use the preferred data interface per the global routing table.

Instead use "ping system". That will use the management interface (and associated gateway).

Cisco Fire Linux OS v6.4.0 (build 2)
Cisco Firepower Threat Defense for VMWare v6.4.0.2 (build 34)

> ping 
  tcp        Test connection over TCP
  system     Test connectivity from the FTD management interface
  interface  interface
  Hostname   hostname or A.B.C.D or X:X:X:X::X

>

hashimwajid1 · ‎07-03-2019

Thanks Marvin,

I'll check tomorrow