Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
671
Views
0
Helpful
1
Replies

FMC NAT to Outside

Lee Dress
Level 1
Level 1

‎01-26-2022 07:14 AM

I have created a rule to NAT my FMC to my outside interface to allow me to add remote FTD devices to FMC. 

I have an access control policy that allows TCP/8305.  

 

I need to test this to see if it will work before I prep my remote FTD device. 

I have tried Telneting to port 8305 from outside and get no response. 

the problem is, when I try it from the same subnet the FMC is on, I get the same result. 

 

how can I verify that FMC is listening on tcp/8305?

I'm pretty sure my rules are correct, but if I get no response from the internal subnet, I have no way of knowing. 

Preview file
29 KB
0 Helpful
1 Reply 1

UdupiKrishna
Cisco Employee
Cisco Employee

‎01-26-2022 07:23 PM

The easiest way to verify if 8305 is listening, run "netstat -an | grep 8305" via expert mode. If it's in listening state, run tcpdump on the FMC while filtering port 8305, initiate traffic locally.

 

This guide should get you started - https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/215540-configure-verify-and-troubleshoot-firep.html

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card