Service Unavailable

Adamciscoaccount · ‎06-01-2020

Hi There,

After accessing a new FR1010 from cli, I entered what I thought was the configuration so that I could place the management interface on our network. However my config sits on management0? Which doesn't seem to be a physical interface and when I plug it into a switch the port does not come up. I cannot ping Management0.

To make it worse somehow I have also cleared all of the default 192.168.1.1 ip addresses of the inside interfaces. Right now I can only access the device from CLI and I cant see anyway I can get it on to the network, can you assist? I'm pulling my hair out.

Rob Ingram · ‎06-03-2020

FTD software is managed locally by FDM, or centrally via on-premises FMC or cloud managed via CDO.
ASA is managed via ASDM.

FTD is the latest NGFW that includes the threat prevention, IPS etc features that ASA software does not support.

View solution in original post

Adamciscoaccount · ‎06-02-2020

Update: I have been able to access the management0 port now via the local switch and ssh to the address. Still unable to access any form of ASDM/ASA cli.

Have tried to get to the local FDM manager on the device by using "configure manager local" however when I https to the address it says

Service Unavailable

The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.

cam anyone help?

Rob Ingram · ‎06-02-2020

Hi,

It sounds like you are running FTD managed via FDM, which means you aren't running ASA nor will you use ASDM to manage the device.

If you have just reconfigured and are receiving that message, it could be the services are restarting.

You only perform the initial management interface configuration using the CLI, the remaining configuration is performed using FDM via the web browser.

Refer to this guide for FP1010 FDM initial configuration.

https://www.cisco.com/c/en/us/td/docs/security/firepower/1010/roadmap/1010-useful-links.html#pgfId-127617

HTH

Adamciscoaccount · ‎06-03-2020

Hi There,

Thanks for your response :)

I have been able to reach it via https to the FDM gui, which should allow me to do some interface config. I am hoping to still use ASDM on it however, will this mean it needs some form of re-image?

Rob Ingram · ‎06-03-2020

ASDM only manages ASA software, so you will need to re-image the device, to change from FTD to ASA.

Here is the guide

https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/reimage/asa-ftd-reimage.html#task_vhy_5kc_sgb

Adamciscoaccount · ‎06-03-2020

Thanks Rob,

Ill check that out, just reading deeper about the FTD, it looks like its some form of progression away from ASDM/ASA unless I am misreading. It may be worth exploring FTD to see if I can do the things I would want to do on this device using ASDM. I need to check its functionality.

Again thanks for your help.

Rob Ingram · ‎06-03-2020

FTD software is managed locally by FDM, or centrally via on-premises FMC or cloud managed via CDO.
ASA is managed via ASDM.

FTD is the latest NGFW that includes the threat prevention, IPS etc features that ASA software does not support.

Cant configure interfaces on new FR1010

Service Unavailable