11-25-2020 06:23 AM
Hi Guys,
I have FTD 6.6.1 with FDM, I configured Remote Access VPN, and everythink working good except for management FTD.
I would like to be able to manage this device after VPN connection. I configured one of data interfaces as a MGMT:
ftd1l# show nameif
Interface Name Security
Ethernet1/2.4 mgmt 0
Ethernet1/2.4 192.168.4.1
I configured management-access command via FlexConfig
ftd1l# sh run | i management
management-access mgmt
ftd1# sh run ssh
ssh 192.168.7.0 255.255.255.0 mgmt
ftd1# sh run http
http server enable
http 192.168.7.0 255.255.255.0 mgmt
nat (mgmt,outside) source static 192.168.4.0 192.168.4.0 destination static vpnpool vpnpool no-proxy-arp route-lookup
But I still can't access to FTD....
I have also SW on this subnet 192.168.4.0 with IP 192.168.4.200 and I able to connect it via SSH...
What is wrong on FTD ?
Solved! Go to Solution.
11-30-2020 05:45 AM
This is a BUG in software FDM
Below answer from Cisco Engineer:
After I have check internally and found that unfortunately it's still not supported to enable manage the device through AnyConnect to the inside interface, there is already a bug has been opened to address this issue:
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt73926
Please refer the below workarounds:
11-26-2020 04:16 AM
Is the VPN configured to either be full tunnel or, if split tunnel. include the management subnet?
11-26-2020 04:49 AM - edited 11-26-2020 10:20 AM
Split tunnel include the management subnet. As I mentioned, any other device in management subnet are accesible via VPN
11-30-2020 05:45 AM
This is a BUG in software FDM
Below answer from Cisco Engineer:
After I have check internally and found that unfortunately it's still not supported to enable manage the device through AnyConnect to the inside interface, there is already a bug has been opened to address this issue:
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt73926
Please refer the below workarounds:
03-02-2023 05:26 AM
A BUG which is still not fixed yet... interesting.
11-30-2020 05:55 AM
Good info. Thanks for sharing the BugID.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: