My firepower lost communication with the Satellite/Call Home. The SLDest DNS was changed and we lost the domain name. Talking to the customer, he was unable to create a DNS entry, and currently our On-Prem License only responds to the IP address.
Problem 1: in the Cisco documentation It only mentions adding a domain to SLDest, not an IP address: set address https://tools.cisco.com/its/service/oddce/services/DDCEService
https://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/fxos281/cli-guide/b_CLI_ConfigGuide_FXOS_281/license_management.html
Does anyone have an IP address? What are the required fields?
Problem 2:
With the synchronization problems, I lost access to the GUI and I can't delete SLDest via CLI, is there any way to reverse this?
I have a Firepower with several L2L VPNs.
SEGW01 /monitoring/callhome # scope profile SLProfile
SEGW01/monitoring/callhome/profile # show destination
Destination:
Name Transport Protocol Email or HTTP/HTTPS URL Address
---------- ------------------ -------------------------------
SLDest Https https://ciscosatellite.xx.yyzzl.com.br/Transportgateway/services/DeviceRequestHandler
SEGW01/monitoring/callhome/profile # delete destination SLDest
^
% Invalid Command at '^' marker
SEGW01/monitoring/callhome/profile # delete destination SLDest
I need to add the new generated token id to get the synchronization back on track. Any suggestion?