cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1977
Views
2
Helpful
3
Replies

FTD management interface not coming up after reimaging from ASA to FTD

hashimwajid1
Level 3
Level 3

Hi Guys

 

I've reimaged ASA 5515x from ASA image to FTD image and used the following images

 

ftd-boot-9.10.1.3.cdisk

ftd-6.3.0-83.pkg

 

management interface was working fine when i was in ROOM mode or was in copying the system images, but once i get into actual CLI of FTD then on that time i cannot ping my gateway from FTD cli.

 

its shows that Management interface is administrative down. i tried to bring it up but its giving error 

 

Interface Management0/0 "", is administratively down, line protocol is down
Hardware is en_vtun rev00, BW 1000 Mbps, DLY 10 usec
Auto-Duplex, Auto-Speed
Input flow control is unsupported, output flow control is off
Available but not configured via nameif
MAC address c08c.6015.61d5, MTU not set
IP address unassigned
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 pause input, 0 resume input
0 L2 decode drops
0 packets output, 0 bytes, 0 underruns
0 pause output, 0 resume output
0 output errors, 0 collisions, 1 interface resets
0 late collisions, 0 deferred
8 input reset drops, 0 output reset drops
input queue (blocks free curr/low): hardware (0/0)
output queue (blocks free curr/low): hardware (0/0)

 

 

 

i used below command to bring  it up 

 

> configure network management-interface enable Management0/0
Nothing changed in Network Config at /ngfw/usr/local/sf/lib/perl/5.10.1/SF/NetworkConf/NetworkSettings.pm line 3103.
Invalid interface supplied.

 

 

> show network
===============[ System Information ]===============
Hostname : CUST-FTD1
DNS Servers : 10.129.200.201
Management port : 8305
IPv4 Default route
Gateway : 172.23.36.113

======================[ br1 ]=======================
State : Enabled
Channels : Management & Events
Mode : Non-Autonegotiation
MDI/MDIX : Auto/MDIX
MTU : 1500
MAC Address : C0:8C:60:15:61:D4
----------------------[ IPv4 ]----------------------
Configuration : Manual
Address : 172.23.36.114
Netmask : 255.255.255.252
Broadcast : 172.23.36.115
----------------------[ IPv6 ]----------------------
Configuration : Disabled

===============[ Proxy Information ]================
State : Disabled
 Authentication : Disabled

 

 

 

on Expert mode its showing interface status

 

admin@CUST-FTD1:~$ ifconfig
br0 Link encap:Ethernet HWaddr 00:00:00:04:00:01
inet addr:127.0.4.1 Bcast:127.0.255.255 Mask:255.255.0.0
inet6 addr: fe80::403:9fff:fefe:ff4c/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2333 errors:0 dropped:0 overruns:0 frame:0
TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:140036 (136.7 KiB) TX bytes:258 (258.0 B)

br1 Link encap:Ethernet HWaddr fc:5b:39:2d:6f:3e
inet addr:172.23.36.114 Bcast:172.23.36.115 Mask:255.255.255.252
UP BROADCAST RUNNING MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:1206 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:50796 (49.6 KiB)

ccl_ha_tap_nlp Link encap:Ethernet HWaddr e6:82:1d:09:bd:0f
UP BROADCAST RUNNING MULTICAST MTU:1300 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:10 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:828 (828.0 B)

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.255.255.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:1753 errors:0 dropped:0 overruns:0 frame:0
TX packets:1753 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:153494 (149.8 KiB) TX bytes:153494 (149.8 KiB)

tap0 Link encap:Ethernet HWaddr b6:01:27:e4:e5:6c
inet addr:127.0.2.2 Bcast:127.0.2.255 Mask:255.255.255.0
inet6 addr: fe80::b401:27ff:fee4:e56c/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:2333 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:172698 (168.6 KiB)

tap1 Link encap:Ethernet HWaddr 1a:23:bd:08:51:7f
inet6 addr: fe80::1823:bdff:fe08:517f/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:2333 errors:0 dropped:0 overruns:0 frame:0
TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:172698 (168.6 KiB) TX bytes:648 (648.0 B)

tap2 Link encap:Ethernet HWaddr ce:cd:d0:94:0b:ee
inet6 addr: fe80::cccd:d0ff:fe94:bee/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:1214 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:51444 (50.2 KiB)

tap3 Link encap:Ethernet HWaddr 06:03:9f:fe:ff:4c
UP BROADCAST PROMISC MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)

tap4 Link encap:Ethernet HWaddr fc:5b:39:2d:6f:3e
UP BROADCAST PROMISC MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)

tap5 Link encap:Ethernet HWaddr e6:06:14:33:40:55
inet6 addr: fe80::e406:14ff:fe33:4055/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:9 errors:0 dropped:705 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:778 (778.0 B)

tap_nlp Link encap:Ethernet HWaddr 62:3f:6b:6d:35:ba
inet6 addr: fd00:0:0:1::2/64 Scope:Global
inet6 addr: fe80::603f:6bff:fe6d:35ba/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:5 errors:0 dropped:0 overruns:0 frame:0
TX packets:10 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:370 (370.0 B) TX bytes:896 (896.0 B)

tap_nlp:1 Link encap:Ethernet HWaddr 62:3f:6b:6d:35:ba
inet addr:169.254.1.2 Bcast:169.254.1.7 Mask:255.255.255.248
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

tun1 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:169.254.0.1 P-t-P:169.254.0.1 Mask:255.255.0.0
inet6 addr: fdcc::bd:0:ffff:a9fe:1/64 Scope:Global
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)

admin@CUST-FTD1:~$

1 Accepted Solution

Accepted Solutions

Marvin Rhoads
Hall of Fame
Hall of Fame

Use "ping system" in order to force the traffic out the FTD Management interface. (You can also ping from expert mode.)

Pinging without that option will use the data interface with an egress route to the target gateway.

View solution in original post

3 Replies 3

Francesco Molino
VIP Alumni
VIP Alumni
Hi

Your config-register should not be with the correct value.
Reboot your device in rommon. type confreg and you should have a value different from 0x00000001. If so, then type confreg 0x1 and finally type boot to start the FTD. Everything should be fine afterwards.


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

Marvin Rhoads
Hall of Fame
Hall of Fame

Use "ping system" in order to force the traffic out the FTD Management interface. (You can also ping from expert mode.)

Pinging without that option will use the data interface with an egress route to the target gateway.

This worked. 
PING SYSTEM <X.X.X.X>
Verified the management is up. Thanks Marvin-

Review Cisco Networking for a $25 gift card