10-12-2020 01:45 PM
Hi,
I am thinking that if it is possible or not, that I can connect to FMC via NAT configuration on FTD on (specific port/Forwarding ) from the OUTside interface of FTD. is that possible? it means that traffic comes from interface Outside of FTD, and then routed to FMC via the Management interface of FTD?
the reason behind: I don't want to open traffic from Intenet to FMC directly, and I want that FTD was responsible for this connection.
thanks
ashkan
Solved! Go to Solution.
10-13-2020 12:42 AM
Yes you can do that.
Note that the communications from a managed device to FMC are always encrypted (TLS over tcp/8305). So you could give your remote FMC a public NAT with an ACL on whatever firewall serves it and thus restrict incoming traffic that way as well.
10-13-2020 12:42 AM
Yes you can do that.
Note that the communications from a managed device to FMC are always encrypted (TLS over tcp/8305). So you could give your remote FMC a public NAT with an ACL on whatever firewall serves it and thus restrict incoming traffic that way as well.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide