03-11-2022 03:25 PM
The management interface of my FPR1010 running 7.0.1.1 managed via FMC responds to HTTPS (tcp 443). Any reason for this?
I've tried to change platform settings, but platform settings do not apply to the management interface.
There are 2 problems:
Thanks in advance!
03-12-2022 12:19 AM
Known bug - CSCvn94888
The documented workaround within the bug is gonna impact the firewall/production. You will need to work with TAC for other workarounds that doesn't involve loosing configuration.
03-12-2022 07:48 AM
Wow thank you. My TAC engineer is taking forever to come to this conclusion! (I know they are short staffed). What does the workaround look like from TAC?
It looks like the issue was resolved in 6.7.... but it must not have been fixed in 7.0.1....
03-12-2022 06:13 PM
If you take a closer look at the bug here's what it says - This defect fix is not retroactive, meaning that upgrading an already registered FTD device to a fix version will not close the port, and either one of the workaround options would need to be completed, or the device reimaged directly to a fix version for this defect to close the 443 port as expected.
The workaround from TAC involves modifying few linux level parameters to stop FTD from listening on port 443. It's better to work with your TAC engineer to apply it.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide