Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1029
Views
0
Helpful
2
Replies

Restrict Ping to FTD Management Interface

mumbles202
Level 5
Level 5

‎08-22-2022 09:31 AM

Is there a way to restrict ICMP for the management interface of an FTD?  I see how to restrict ICMP to the data-plane interfaces of the FTD and also how to restrict ssh access to the management interface of the FTD, but didn't see how to restrict ICMP to a subset of hosts that need to monitor the device.  Is that possible?  

0 Helpful
2 Replies 2

Mark Elsen
Hall of Fame
Hall of Fame

‎08-23-2022 12:04 AM

 

 - FYI : https://community.cisco.com/t5/network-security/block-icmp-to-ftd-device-interface-ip-in-fdm/m-p/4152415#M1073966

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful

mumbles202
Level 5
Level 5
In response to Mark Elsen

‎08-23-2022 09:38 AM

Thanks for the link.  So that works for disabling pings to the outside interface of the FTD.  I'm referring to the MGMT interface which doesn't sit behind the FTD inside interface.  I see you can modify the ssh access-list that is applied to the MGMT interface but haven't found a way to restrict ICMP to that interface.  

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card