cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1263
Views
0
Helpful
3
Replies

Firepower Secondary SSH

jeremy-rogers
Level 1
Level 1

I have a firepower 4100 series setup as an HA pair that I just inherited. I am not familiar with this device. I noticed today that I can SSH into the primary FTD, but not the secondary. Is this normal? I just want to make sure there isn't anything wrong. In the FMC web interface, I am not seeing any problem. I just want to check and see if this is normal.

Thanks!

3 Replies 3

Marvin Rhoads
Hall of Fame
Hall of Fame

Both devices' management interfaces should be available via ssh (as long as you did not apply an ssh-access-list via the FTD cli).

The default is that there is no restriction:

> show ssh-access-list 
ACCEPT     tcp  --  anywhere             anywhere             state NEW tcp dpt:ssh
ACCEPT     tcp      anywhere             anywhere             state NEW tcp dpt:ssh
> 

bcoverstone
Level 1
Level 1

This is a bug in Cisco FTD. Sometimes it works, sometimes it does not. I'll file a bug report in the next beta session.

Was the bug report completed by chance? Wondering what the bug ID is.

Review Cisco Networking for a $25 gift card