12-07-2022 06:05 AM - edited 12-07-2022 06:06 AM
Hello,
I have successfully register FTD to remote FMC.
1-FMC ---> FTD--->NATIP_FMC and PORT 8305 ----> REMOTE FTD-PUBLIC IP
Created ACL only access from FTD-Remote
Created VPN/S2S between both FTD.
Now my problem is how to convert the mgmt interface in private IP? without losing connection to remote FMC??
12-20-2022 03:55 AM
Hi ,
You can refer to this document the process :
https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/management-center-mgmt-nw/fmc-ftd-mgmt-nw.html#id_46848
its similar to changing Ip address.
you can refer to this similar community post : https://community.cisco.com/t5/network-security/ftd-need-to-change-mgmt-ip/td-p/3673890
1.Disable management of the device in FMC. Do that via Device Management > edit the Device > Device tab > move slider next to management section.
2. Change the address on the device directly using "configure network ..." command from the cli.
3. Edit the management address in FMC from the same place you disabled management. Then move the slider back to enable management.
If its a production environment you can reach out to TAC to make sure you dont lose connectivity and be sure about that.
-----------------------------------------
You can also learn more about Secure Firewall (formerly known as NGFW) through our live Ask the Experts (ATXs) session. Check out Cisco Network Security ATXs Resources [https://community.cisco.com/t5/security-knowledge-base/cisco-network-security-ask-the-experts-resources/ta-p/4416493] to view the latest schedule for upcoming sessions, as well as the useful references, e.g. online guides, FAQs.
-----------------------------------------
Regards
Divya Jain
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide