Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
941
Views
0
Helpful
2
Replies

cdFMC, which FTD interface for management?

Jack G
Level 4
Level 4

‎11-07-2025 02:10 PM

I'm new to using cdFMC and planning to add two FTDs configured for high availability. What are the recommended interfaces for management? Should I use a data interface for management purposes on both firewalls (two public IP addresses)? Additionally, is it possible to switch to the dedicated management interface while still maintaining connectivity between the FTDs and cdFMC? Ideally, I'd like to retain SSH access to the firewalls from the LAN and not have SSH open on the WAN.

0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎11-08-2025 12:30 AM

If you have out-of-band management to connect to the Internet, then I use the Management interface to connect to CFMCA 

good presentation helps you :

https://www.ciscolive.com/c/dam/r/ciscolive/global-event/docs/2023/pdf/BRKSEC-2318.pdf

BB

=====️ Preenayamo Vasudevam ️=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Aref Alsouqi
VIP
VIP

‎11-10-2025 07:55 AM

The devices dedicated management interfaces would still need to be configured and you can access the devices from your local LAN just as normal. When the FTDs try to register to the cdFMC they use their outside interface because that traffic will flow securely over the internet. So you don't really have to open up anything from the WAN in terms of management of the devices and for any change that will be deployed from the cdFMC it will be delivered to the devices over the secure management channel between the cdFMC and the FTDs. So, also for that you don't have to open up anything externally.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card