06-04-2019 01:19 PM - edited 02-21-2020 09:11 AM
I have FMC and FTD4110 in DEV environment. I have to change both of their IP addresses in production. Can i just re-IP, and put onto the production network ?
06-04-2019 10:11 PM
You will need to delete and re-add the manager from the device side as well as remove and replace the device in the manager. Then redeploy policy.
06-05-2019 06:01 AM
1. Will I need to reconfigure HA, etc. ?
2. For clarity, I am NOT change physical port interfaces.... I am just assigning new IP addresses.
06-05-2019 10:28 PM
I believe you will have to re-establish HA. FMC linked to the devices and both ends established their respective sftunnel based on the system IP addresses. Changing those addresses leads both ends to believe it is a new device it is communicating with so you need to manually tell FMC how to treat the "new" device (ie.e just like the old ones - an HA pair with certain policy applied).
You might consider opening a TAC case for verification.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide