Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1386
Views
0
Helpful
3
Replies

Not able to reach the FMC IP from the FTDv which is on the same VM host

varunvenkatesh
Cisco Employee
Cisco Employee

‎09-21-2018 06:55 AM - edited ‎02-21-2020 08:16 AM

Hi Guys,

 

The issue I am facing here is i have an FMC which is deployed on a VM and to which a FTD installed on a FP2110 has been registered succesfully and working fine. 

The FMC IP is 10.126.210.27 

The FTD which is deployed on FP2110 is as below 

>
> show network
===============[ System Information ]===============
Hostname : FirePowerHost
DNS Servers : 208.67.222.222
208.67.220.220
Management port : 8305
IPv4 Default route
Gateway : 10.105.195.31

==================[ management0 ]===================
State : Enabled
Channels : Management & Events
Mode : Non-Autonegotiation
MDI/MDIX : Auto/MDIX
MTU : 1500
MAC Address : XXXXXXXXXXXXXXXXX
----------------------[ IPv4 ]----------------------
Configuration : Manual
Address : 10.105.195.177
Netmask : 255.255.255.0
Broadcast : 10.105.195.255
----------------------[ IPv6 ]----------------------
Configuration : Disabled

===============[ Proxy Information ]================
State : Disabled
Authentication : Disabled

###################################################################################

The next thing is i am trying to register a FTDv deployed on a vm to the above FMC 

the details are as below for the new FTDv : 

Please find the screen capture of all the relevant output from the FTDv. 

Please let me know where am i going wrong 

I am unable to reach my gateway as well as the FMC. 

will be grateful for your suggestions as well as your inputs guys. 

 

Preview file
148 KB
Preview file
69 KB
Preview file
86 KB
Preview file
101 KB
0 Helpful
3 Replies 3

Terry Grant
Level 1
Level 1

‎09-21-2018 08:39 AM

Not sure which flavor of FTDv you are deploying.  I recently deployed FTDv into AWS which requires two management interfaces.  The mgmt interface I had to use to register in FMC was not the interface IP seen from the FTDv CLI.  That caused me some frustration while trying to register FTDv to FMC.

0 Helpful

gbekmezi
Level 5
Level 5

‎09-21-2018 09:55 AM

Can you ping anything on your network?  I just installed a pair of FTDv NGFWs and I had to replace all the network interfaces so they used the VMXNET 3 driver instead of the E1000 driver and things started working once they were powered back up.

0 Helpful

varunvenkatesh
Cisco Employee
Cisco Employee
In response to gbekmezi

‎09-24-2018 01:25 AM

Thanks gbekmezi, Yes I am unable to ping anything on my network and I have attached all the outputs from the basic commands from the FTDv CLI. 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card