Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
814
Views
0
Helpful
5
Replies

HowTo change Managment ip addresses FTD managment ip (under HA)

tanri04
Level 1
Level 1

‎11-12-2025 04:07 AM

There are 2 FTDs connected to the FMC and under HA.
I want to change their management IP addresses. How do I do this step by step?

FMC IP 10.12.200.28/24
FTD 1 IP 10.12.200.11/24
FTD 2 IP 10.12.200.12/24

These FTDs are connected to HA on FMC.

I want to move these IP addresses to a new subnet without interruption.
FMC ip 10.12.120.100/24
FTD 1 ip 10.12.120.101/24
FTD 1 ip 10.12.120.102/24

How do I do this step by step?
How do I do this step by step?

Preview file
127 KB
0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎11-12-2025 04:28 AM

Personally i do below :

1. take the configuration backup out of the box

2. Do not make any changes on FMC

3. Since MGMT only to manage the devices, so it wont break HA, make sure you are not monitory MGMT in HA monitor 

4. de-register from FMC

5. you can break the HA (personally you do not need)

6. change the MGMT IP to new IP one at a time, 

7. re-register both FTD and make sure they have register

8 check the HA is ok

9, push test policy and test it.

Order is change FMC IP and FTD IP is good option.

make sure where ever new IP required to change like AAA or Logging so on to reflect new IP.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

tanri04
Level 1
Level 1
In response to balaji.bandi

‎11-12-2025 04:42 AM

The management interface is not monitored under HA.
The Ethernet 4 interfaces of the FTDs are connected to each other (HA links).
Should I delete and add the configure manager?
Can I manually configure the network IPv4 without breaking HA (without breaking or suspending HA)? When I add it again, will the Access Control Policy:* on the FMC remain intact?

Preview file
108 KB
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to tanri04

‎11-12-2025 04:58 AM

As Long as you not making any changes on FMC while doing this ip change task, the configuration will be intact and FTD work as expected.

as i suggested always take the  backup config out of the box  to be safe.

you do not need to break the HA since Management not related to HA (and you mentioned not monitored)

yes change the IP , delete and register with new IP for configure manager

 

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

tanri04
Level 1
Level 1
In response to balaji.bandi

‎11-12-2025 05:40 AM

> configure network ipv4 manual 10.12.120.101 255.255.255.0 10.12.120.1
> configure manager delete
> configure manager add 10.12.120.100??? ( Alpha-numeric between 2 and 36 chars registration key) When I enter this, it asks for a registration key at the end. I don't know the registration key for the FTDs added with the old IP. What happens if I enter a new registration key?

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to tanri04

‎11-12-2025 06:55 AM - edited ‎11-12-2025 06:55 AM

if you deleted old and adding new, you need to use new registration that can be used both the sides FMC and FTD same key to communicate and trust.

you can not go back to OLD key since you do not have it in your key store safe i guess.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card