12-18-2019 12:34 PM - edited 02-21-2020 09:46 AM
Is it possible to manage via FMCv several remote FTDs or must the FMCv be deployed on the same LAN as the FTDs?
Today I have devices on different clients with FDM and wanted to manage them via FMCv.
12-18-2019 12:38 PM
12-18-2019 12:54 PM
So for reach the device is only for the manegement interface? If I try manage via outside interface is possible? Because today my management interface isn't configured.
12-18-2019 12:59 PM
Unfortunately no, communication is between the FTD's management interface and the FMC and is mandatory. Reference here.
12-18-2019 01:05 PM
One doubt, today the FTD is all configured via FDM, if I put FMCv it will lose the configuration, so I back the FDM backup image would be possible via the Mangement interface? Would it always be online?
12-18-2019 01:25 PM
If converting from FDM managed to FMC, you could just wipe the config by temporarily changing the firewall mode from routed to transparent and then back to routed. More information here. I don't believe it resets the management interface IP address (I don't have an FTD to check right now), but you may wish to confirm before doing it on a remote FTD.
12-19-2019 04:25 AM
I have read the site you submitted and understand that when I switch FTD to another mode, I will lose all previously configured features.
12-19-2019 06:46 AM - edited 12-19-2019 06:47 AM
If you follow those instructions to change from routed to transparent and back to routed mode, this removes the configuration including the data interfaces configuration. The management interface configuration (IP address/gateway) is NOT reset. I tested in the lab and completed the entire process by connecting to the management IP using SSH.
After the configuration has been reset, you can then configure the FMC as the manager.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: