SSH access to firepower 1010 via loopback
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-17-2024 05:25 AM
Hello guys,
we try to access a firepower 1010 (remote office) from our headquater over an ipsec tunnel via ssh.
Therefore we configured a loopback interface, which is part of the routing over the vpn, and this loopback is pingeable.
Somehow we are not able to get ssh running...
Any ideas what we need to enable to get ssh access to loopback running?
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-17-2024 05:52 AM - edited 01-17-2024 06:04 AM
It's not supported (on 7.3). "... loopback interfaces cannot be used for management features like AAA, SSH, Syslog, etc., they can only be used for VTI tunnels."
https://secure.cisco.com/secure-firewall/v7.3/docs/loopback-interface
As @Rob Ingram notes, release 7.4 adds ssh and other support.
(edited to reflect Rob's information)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-17-2024 06:01 AM
From 7.4 - "You can now use loopback interfaces for AAA, BGP, DNS, HTTP, ICMP, IPsec flow offload, NetFlow, SNMP, SSH, and syslog" https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/roadmap/management-center-new-features-by-release.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-17-2024 06:02 AM
are config config SSH in loop back via FMC ?
MHM
