Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3580
Views
5
Helpful
5
Replies

Firepower FTD 2110 /31 IP

Go to solution
Luke Fahey
Level 1
Level 1

‎08-22-2019 12:15 AM - edited ‎02-21-2020 09:25 AM

Hi There,

We have just purchased a 2110 and were in the process of setting it up and have hit an early road block. Our ISP is using a /31 subnet for our internet link and it seems FMC will not support this when configuring the interface.

Is there any work arounds for this or do we need to go back to our ISP and change to a /30 IP range. We would rather not have to do this as we use this IP for many cloud services etc.

Looking forward to some advice.

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-22-2019 05:54 AM

/31 addresses are not currently supported on FTD. Another customer reported the same thing a couple of months back and Cisco TAC confirmed the support was not currently there on 6.2.3:

https://community.cisco.com/t5/firewalls/ftd-6-2-3-on-asa5506-x-unable-to-use-31-mask-on-ipv4-data/td-p/3866229

It wasn't changed in 6.3 or 6.4.

I don't have any word as to whether this will change with any upcoming releases.

View solution in original post

5 Replies 5

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-22-2019 05:54 AM

/31 addresses are not currently supported on FTD. Another customer reported the same thing a couple of months back and Cisco TAC confirmed the support was not currently there on 6.2.3:

https://community.cisco.com/t5/firewalls/ftd-6-2-3-on-asa5506-x-unable-to-use-31-mask-on-ipv4-data/td-p/3866229

It wasn't changed in 6.3 or 6.4.

I don't have any word as to whether this will change with any upcoming releases.

Go to solution
Luke Fahey
Level 1
Level 1
In response to Marvin Rhoads

‎08-22-2019 06:59 PM

Thanks @Marvin Rhoads Appreciate that. Will need to get the ISP to change the IP to a /30.

 

 

0 Helpful

Go to solution
Abraham012
Level 1
Level 1
In response to Marvin Rhoads

‎02-01-2022 09:46 AM

Hey Folks,

I tried in my lab by installing 7.1 version. Yes am able to assign the /31 IP to the interface, but with warning as attached.

Preview file
132 KB
0 Helpful

Go to solution
Aref Alsouqi
VIP
VIP
In response to Abraham012

‎02-01-2022 09:54 AM

I think that warning message is just to tell you that if you are configuring a /31 on an interface where the broadcast and the network ID are required it will cause problems. The /31 should only be used on a point to point connection where no need to any other IP address but the host IPs.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card