About mlandavazo

mlandavazo · 11-17-2021

I've got a Firepower 1010 set up (FTD via FDM) as a remote VPN device and I am unable to see devices on the LAN when I connect to the VPN. The device is connected to the LAN via the Management interface, where it is automatically assigned an IP addre...

mlandavazo · 11-17-2021

@Rob Ingram Still cannot ping any local devices. I've attached my NAT rule, firewall access rule, and the network object I created for our LAN IP range. Attached pertinent RA VPN rules as well.

mlandavazo · 11-17-2021

@Rob Ingram I removed an ethernet port from the bridge group, connected it to our LAN, and gave it an IP address. From here I can just create the rules you mentioned?

mlandavazo · 11-17-2021

@Rob Ingram I wasn't aware that the management interface could not also be used to allow through traffic. I'll connect to a data interface and see what I can do. Do you foresee any issues if I create a LAN network object and assign it the following ...

mlandavazo · 11-17-2021

@Rob Ingram I found some info on NAT Exempt rules and made the attached changes.

mlandavazo · 11-17-2021

@Rob Ingram Thank you, I had an Access Control rule like that in place but was still not able to connect, so NAT is most likely the issue. Is the attached rule what I should implement?

Member Since	‎11-17-2021 12:43 PM
Date Last Visited	‎11-25-2021 10:52 AM
Posts	6

User Statistics

User Activity

Firepower 1010 Unable to Connect to LAN Devices

Re: Firepower 1010 Unable to Connect to LAN Devices

Re: Firepower 1010 Unable to Connect to LAN Devices

Re: Firepower 1010 Unable to Connect to LAN Devices

Re: Firepower 1010 Unable to Connect to LAN Devices

Re: Firepower 1010 Unable to Connect to LAN Devices