11-25-2020 06:23 AM
Hi Guys,
I have FTD 6.6.1 with FDM, I configured Remote Access VPN, and everythink working good except for management FTD.
I would like to be able to manage this device after VPN connection. I configured one of data interfaces as a MGMT:
ftd1l# show nameif
Interface Name Security
Ethernet1/2.4 mgmt 0
Ethernet1/2.4 192.168.4.1
I configured management-access command via FlexConfig
ftd1l# sh run | i management
management-access mgmt
ftd1# sh run ssh
ssh 192.168.7.0 255.255.255.0 mgmt
ftd1# sh run http
http server enable
http 192.168.7.0 255.255.255.0 mgmt
nat (mgmt,outside) source static 192.168.4.0 192.168.4.0 destination static vpnpool vpnpool no-proxy-arp route-lookup
But I still can't access to FTD....
I have also SW on this subnet 192.168.4.0 with IP 192.168.4.200 and I able to connect it via SSH...
What is wrong on FTD ?
Solved! Go to Solution.
11-30-2020 05:45 AM
This is a BUG in software FDM
Below answer from Cisco Engineer:
After I have check internally and found that unfortunately it's still not supported to enable manage the device through AnyConnect to the inside interface, there is already a bug has been opened to address this issue:
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt73926
Please refer the below workarounds:
11-26-2020 04:16 AM
Is the VPN configured to either be full tunnel or, if split tunnel. include the management subnet?
11-26-2020 04:49 AM - edited 11-26-2020 10:20 AM
Split tunnel include the management subnet. As I mentioned, any other device in management subnet are accesible via VPN
11-30-2020 05:45 AM
This is a BUG in software FDM
Below answer from Cisco Engineer:
After I have check internally and found that unfortunately it's still not supported to enable manage the device through AnyConnect to the inside interface, there is already a bug has been opened to address this issue:
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt73926
Please refer the below workarounds:
03-02-2023 05:26 AM
A BUG which is still not fixed yet... interesting.
11-30-2020 05:55 AM
Good info. Thanks for sharing the BugID.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide