FTD not connecting to FMC

vs1784 · ‎03-04-2024

I have changed management interface IP address. It was using DHCP and i changed it to use static IP address.

Now it is not able to connect to FMC.

sftunnel.status.pl output is below

SFTUNNEL Start Time: Mon Mar 4 18:55:57 2024

Both IPv4 and IPv6 connectivity is supported
Broadcast count = 0
Reserved SSL connections: 0
Management Interfaces: 2
management0 (control events) 192.168.7.35,
tap_nlp (control events) 169.254.1.3,fd00:0:0:1::3

***********************

**RUN STATUS****X.X.X.X*************
Connected: No
SSL Verification status: ok
Registration: Completed.
Connection to peer 'X.X.X.X' never happened
Connection to peer 'X.X.X.X' Attempted at Mon Mar 4 19:02:12 2024 UTC

***********************
peer 0b4a8dd6-d65c-11ee-9c07-a075be8fd2e9 did not reply at /ngfw/usr/local/sf/bin/sftunnel_status.pl line 304.
Retry rpc status poll at /ngfw/usr/local/sf/bin/sftunnel_status.pl line 310.

**RPC STATUS****X.X.X.X*************
RPC status :Failed
Check routes:
No peers to check

IP address shown above is not correct. My management interface IP is 192.168.7.8 assigned as manual.

If i look at logs, i see below

Mar 4 19:03:32 firepower SF-IMS[62779]: [62794] sftunneld:sf_peers [INFO] Peer X.X.X.X needs a single connection
Mar 4 19:03:33 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to bind to port 8305 192.168.7.35 (IPv4): Cannot assign requested address
Mar 4 19:03:33 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to start listening on port 8305 (192.168.7.35). Check management interface management0.
Mar 4 19:03:34 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to bind to port 8305 192.168.7.35 (IPv4): Cannot assign requested address
Mar 4 19:03:34 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to start listening on port 8305 (192.168.7.35). Check management interface management0.
Mar 4 19:03:35 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to bind to port 8305 192.168.7.35 (IPv4): Cannot assign requested address
Mar 4 19:03:35 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to start listening on port 8305 (192.168.7.35). Check management interface management0.
Mar 4 19:03:36 firepower SF-IMS[8113]: [8177] EventHandler:UECHandler [WARN] UECPeerHigh_0b4a8dd6-d65c-11ee-9c07-a075be8fd2e9: Failed to connect to 0b4a8dd6-d65c-11ee-9c07-a075be8fd2e9
Mar 4 19:03:36 firepower SF-IMS[8113]: [8180] EventHandler:UECHandler [WARN] UECPeerLow_0b4a8dd6-d65c-11ee-9c07-a075be8fd2e9: Failed to connect to 0b4a8dd6-d65c-11ee-9c07-a075be8fd2e9
Mar 4 19:03:36 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to bind to port 8305 192.168.7.35 (IPv4): Cannot assign requested address
Mar 4 19:03:36 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to start listening on port 8305 (192.168.7.35). Check management interface management0.
Mar 4 19:03:36 firepower SF-IMS[62781]: [62790] sfmbservice:sfmb_service [INFO] Start getting MB messages for X.X.X.X
Mar 4 19:03:37 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to bind to port 8305 192.168.7.35 (IPv4): Cannot assign requested address
Mar 4 19:03:37 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to start listening on port 8305 (192.168.7.35). Check management interface management0.
Mar 4 19:03:38 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to bind to port 8305 192.168.7.35 (IPv4): Cannot assign requested address
Mar 4 19:03:38 firepower SF-IMS[62779]: [62793] sftunneld:tunnsockets [ERROR] Unable to start listening on port 8305 (192.168.7.35). Check management interface management0.

What shall I do to use correct IP address?