Firepower Secondary SSH

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-18-2021 07:22 AM
I have a firepower 4100 series setup as an HA pair that I just inherited. I am not familiar with this device. I noticed today that I can SSH into the primary FTD, but not the secondary. Is this normal? I just want to make sure there isn't anything wrong. In the FMC web interface, I am not seeing any problem. I just want to check and see if this is normal.
Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-18-2021 08:42 AM
Both devices' management interfaces should be available via ssh (as long as you did not apply an ssh-access-list via the FTD cli).
The default is that there is no restriction:
> show ssh-access-list ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh ACCEPT tcp anywhere anywhere state NEW tcp dpt:ssh >

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-21-2023 09:56 PM
This is a bug in Cisco FTD. Sometimes it works, sometimes it does not. I'll file a bug report in the next beta session.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-31-2023 11:11 AM
Was the bug report completed by chance? Wondering what the bug ID is.
