Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
518
Views
0
Helpful
0
Replies

Equivalent of management access interface setting in FTD 7.1

Jacob Gibb
Level 1
Level 1

‎02-06-2022 03:19 PM

Hi all, 

I have setup a FTD appliance and would like to manage the 'inside' interface across the vpn tunnel (L2L) to the main DC where VPN RA tunnels terminate. I am using the inside interface as the route for management traffic and have all 0.0.0.0 allowed for SSH/HTTPS. In the ASA there was an option to designate an interface as management access and allow ping etc to the interface when hair-pinning from a VPN connection (along with having the correct sysopt permit intra/inter interface commands). I do not see where this can be done on the FTD appliance and therefore cannot ping/https/ssh to the 'inside' IP address of the device but everything else on that subnet is reachable without issue. I did troubleshoot to on the main DC where the RA VPN terminates and packets are coming in and hair-pinning correctly towards the remote site, other side of the L2L tunnel, but no luck. Anyone else running into this issue? Thoughts? 

 

(10.62.0.3)RA VPN --> DC ASA < ----> Remote FTD 1010 --*10.42.0.1* (inside interface)

0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card