Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
566
Views
0
Helpful
2
Replies

Restrict Ping to FTD Management Interface

mumbles202
Level 5
Level 5

‎08-22-2022 09:31 AM

Is there a way to restrict ICMP for the management interface of an FTD?  I see how to restrict ICMP to the data-plane interfaces of the FTD and also how to restrict ssh access to the management interface of the FTD, but didn't see how to restrict ICMP to a subset of hosts that need to monitor the device.  Is that possible?  

0 Helpful
2 Replies 2

marce1000
VIP
VIP

‎08-23-2022 12:04 AM

 

 - FYI : https://community.cisco.com/t5/network-security/block-icmp-to-ftd-device-interface-ip-in-fdm/m-p/4152415#M1073966

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

mumbles202
Level 5
Level 5
In response to marce1000

‎08-23-2022 09:38 AM

Thanks for the link.  So that works for disabling pings to the outside interface of the FTD.  I'm referring to the MGMT interface which doesn't sit behind the FTD inside interface.  I see you can modify the ssh access-list that is applied to the MGMT interface but haven't found a way to restrict ICMP to that interface.  

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card