Solved: Firepower next generation firewall

Star Sulaiman · ‎01-09-2023

Hello All,

I am just doing some labs trying to build some FTD-NG standard firewall and managed through the browser it self not through the FMC.

however when try https://10.1.1.1 it won't work, it times out.

Note i can ping the FTD from my pc and from FTD to PC.

this lab been built in EVE NG.

Will this issues be caused by the licenses?

any help or suggestion I appreciated.

please see the screen shot of the CLI.

Also the i can access it through the putty as well.

many thank you.

Star

Rob Ingram · ‎01-09-2023

@Star Sulaiman that's NOT the FTD image, it's the NGIPS image - so you cannot manage the NGIPS image locally, you need to manage using the FMC.

You need to get the FTD image which you can manage locally.

Rob Ingram · ‎01-09-2023

@Star Sulaiman from the CLI run "show managers" does it confirm "Managed locally"?

Star Sulaiman · ‎01-09-2023

Hello Rob,

There is no managers configured.

Rob Ingram · ‎01-09-2023

@Star Sulaiman ok, so the FTD is not configured for local management. From the CLI run "configure manager local"

To answer your other question, it should not be a licensing problem as at a minimum you'd have a base license.

Star Sulaiman · ‎01-09-2023

Hello Rob,

I have tried few times this command is not working,

I tried to user

configure manger local

configure manger local cisco

configure manger add local

none of them working but when i try to add it to the FMC with configure manager add 10.1.1.10 cisco it's working fin.

Not sure what i am missing.

Rob Ingram · ‎01-09-2023

@Star Sulaiman try "configure manager delete" then "configure manager local"

I assume this device is new and not been configured, as you will lose the configuration.

Star Sulaiman · ‎01-09-2023

Hello Rob,

yes the device is new.

this commands are still not working.

Rob Ingram · ‎01-09-2023

@Star Sulaiman what image and version are you using in EVENG?

Type ? and what commands are available?

Star Sulaiman · ‎01-09-2023

I'm using EVENG community and see below.

Rob Ingram · ‎01-09-2023

@Star Sulaiman I was referring to the FTD image you are using in EVENG?

What commands are available from the FTD CLI?

Star Sulaiman · ‎01-09-2023

Hello Rob,

Rob Ingram · ‎01-09-2023

@Star Sulaiman that's NOT the FTD image, it's the NGIPS image - so you cannot manage the NGIPS image locally, you need to manage using the FMC.

You need to get the FTD image which you can manage locally.

Star Sulaiman · ‎01-09-2023

OW sorry Rob, my bad, sorry for confusing you. I didn't know that.

I have powered up the FTD and i will let you know how it goes.

Many Many thank you for your time and help.

Star Sulaiman · ‎01-09-2023

Hello Rob,

you were right now the ftd is working through the https but now i get a different error.

Rob Ingram · ‎01-09-2023

@Star Sulaiman perhaps the services haven't started yet, try again after a while.