Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3253
Views
21
Helpful
3
Replies

Exiting Expert Mode

tahscolony
Level 1
Level 1

‎11-09-2016 09:43 AM - edited ‎03-10-2019 06:42 AM

Somehow my MC got stuck in Expert mode, and I need to perform an ACL rollback. Some schmo deleted the any any and killed ALL HTTP/SSH access to it,(not me).  I logged in via the VM console and got presented with ~$, which is the expert shell, but can't find anywhere how to return to the system command prompt.

2 people had this problem
Labels:
0 Helpful
3 Replies 3

Oliver Kaiser
Level 7
Level 7

‎11-09-2016 12:08 PM

The system command prompt (sfcli) is only available on sensors as far as I know. You may add a temporary rule to iptables to permit https access, reconfigure your acl via the web ui and everything should work just fine again (your temp rule will be overwritten too, so no need to delete it afterwards).

Just do the following...

sudo su - 

iptables -I INPUT -p tcp --dport 443 -j ACCEPT

Then goto FMC UI and configure your acl again.

Mark as helpful if this solved your issue or let me know if you have any additional questions

0 Helpful

tahscolony
Level 1
Level 1

‎11-09-2016 12:41 PM

I did some digging around and found it to be regular linux underneath and was able to find that he didn't completely delete all rules, I still had access from our monitoring server and was able to gain GUI there and restore the broken rules.

Cory Brown
Level 1
Level 1

‎11-09-2016 01:34 PM

Try the 'clish' command
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card