Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
595
Views
1
Helpful
8
Replies

FTD unable to ping tools.cisco.com from CLI

NetworkMonkey101
Level 1
Level 1

‎10-17-2024 01:16 AM

I have an FTD which is able to ping 8.8.8.8 and internet but not able to ping system tools.cisco.com. Threat Defence Cloud error is showing. This FTD is using the same DNS policy as another which is able to ping tools.cisco.com

0 Helpful
8 Replies 8

balaji.bandi
Hall of Fame
Hall of Fame

‎10-17-2024 01:20 AM - edited ‎10-17-2024 01:23 AM

Try ping the IP resolved by tools.cisco.com (is that works)  the updates uses different ports like 80 or 443 ( need to look the document what port they get updates.

Non-authoritative answer:
Name: tools.cisco.com
Addresses: 2001:420:1101:5::a
72.163.4.38

 

Threat Defence Cloud error is showing.

what is the error you getting ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

NetworkMonkey101
Level 1
Level 1
In response to balaji.bandi

‎10-17-2024 01:35 AM

Hi seeing this when attempting to ping tools.cisco.com

NetworkMonkey101_0-1729154034800.png

 

Error on FTD shows

NetworkMonkey101_1-1729154073119.png

states please check network connection

 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to NetworkMonkey101

‎10-17-2024 04:22 AM 

This FTD is using the same DNS policy as another which is able to ping tools.cisco.com

as per your post i was in impression the DNS work, that is reason i have edited my comment.

are you able to ping with IP address which resolved to tools.cisco.com?

check DNS config :

https://www.cisco.com/c/en/us/td/docs/security/firepower/630/fdm/fptd-fdm-config-guide-630/fptd-fdm-system.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

NetworkMonkey101
Level 1
Level 1

‎10-17-2024 01:37 AM

Not sure if this is relevant or another issue but the SSE connector is showing "waiting" on the FTD that cannot reach tools.cisco.com and on the working model it is green..

 

NetworkMonkey101_2-1729154216018.png

 

0 Helpful

NetworkMonkey101
Level 1
Level 1

‎10-17-2024 02:20 AM

Ping is failing from the management int

NetworkMonkey101_0-1729156840841.png

 

0 Helpful

Rob Ingram
VIP
VIP
In response to NetworkMonkey101

‎10-17-2024 02:29 AM

@NetworkMonkey101 run "show network" is DNS configured for the management interface?

If not configure using the "configure network dns servers <ip>" command.

https://www.cisco.com/c/en/us/td/docs/security/firepower/command_ref/b_Command_Reference_for_Firepower_Threat_Defense/c_3.html#wp2291657657

 

NetworkMonkey101
Level 1
Level 1
In response to Rob Ingram

‎10-17-2024 06:05 AM - edited ‎10-17-2024 06:13 AM

I am missing hostname, dns and domain. I can see I can set the hostname and add dns from cli how can I add the domain?

added the hostname and dns and can no ping tools.cisco.com and also perform dig command, domain not showing though and needs adding, what is the command as cannot see it under configure network >

 

NetworkMonkey101_0-1729170324314.png

 

0 Helpful

Aref Alsouqi
VIP
VIP
In response to NetworkMonkey101

‎10-17-2024 06:46 AM

"added the hostname and dns and can no ping tools.cisco.com" ... Did you mean to say "... can now ping ..."?

To add the search domain you can use the command "configure network dns searchdomains ...".

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card