05-13-2021 04:45 AM
Hello,
I am trying to setup a firepower 1010 device and i have a problem.
I have setup the remote access vpn (anyconnect) and it working perfectly. Full tunnel is configured. NAT outside outside for the clients internet etc. However i cannot connect to the firewall management interface (https, ssh, ping are not working). I believe that this is something easy to resolve. Is something that is missing?
Thanks in advance.
Solved! Go to Solution.
05-13-2021 04:51 AM - edited 05-13-2021 04:53 AM
Unfortunately not, this is still an open bug
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt73926
The TAC workaround is to connect to the outside interface to manage the FTD!!
Alternatively you could use CDO to manage the FTD, at least you don't need to permit access from the entire internet, just the CDO servers.
05-13-2021 04:51 AM - edited 05-13-2021 04:53 AM
Unfortunately not, this is still an open bug
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt73926
The TAC workaround is to connect to the outside interface to manage the FTD!!
Alternatively you could use CDO to manage the FTD, at least you don't need to permit access from the entire internet, just the CDO servers.
05-13-2021 06:43 AM
Thank you Rob,
The TAC workaround is for the SSH access as i can see. Is it possible to change the https management port? Because the 443 is already used for the VPN.
05-13-2021 06:47 AM - edited 05-13-2021 06:48 AM
You can change the port for FDM management (on a data interface) or RAVPN from version 6.7
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide