Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
177
Views
0
Helpful
2
Replies

FIREPOWER 2110 TRAFFIC NOT GOING THROUGH THE WAN INTERFACE

kayodeodeyinka7
Level 1
Level 1

‎03-15-2024 08:46 AM - last edited on ‎03-15-2024 08:58 AM by Community Manager

Hi Professionals,

I set up a Cisco 2110 device with a FTD 7.2.5 ios version but it does not have the following basic interface configuration:

cts manual
propagate sgt preserve-untag
policy static sgt disabled trusted

Please can the absence on this on the interface drop traffic on a WAN port.

Most services on the WAN port are currently not accessible from the WAN.

I have checked the running config and everything looks fine.

Kindly advice on what to do

 

0 Helpful
2 Replies 2

MHM Cisco World
VIP
VIP

‎03-15-2024 09:09 AM

It should  not effect traffic pass unless you use SGT in network.

Can you more elaborate' is traffic not pass at all?

MHM

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎03-15-2024 09:48 AM 

I set up a Cisco 2110 device with a FTD 7.2.5 ios version but it does not have the following basic interface configuration:

is this first time setup ?

are you managing FTD with FMC or FDM ?

Please can the absence on this on the interface drop traffic on a WAN port.

we do not have any visibility what WAN switch config what Device mode and IOS to confirm what is not working here ?

Most services on the WAN port are currently not accessible from the WAN.

again this statement is not clear ? before you deploy FTD - they can accessble ? what IP range  ? how does your network diagram looks like for us to assits or suggest anything here.

cts manual
propagate sgt preserve-untag
policy static sgt disabled trusted

Does your rest of the environment use CTS ?

Kindly advice on what to do

1. Provide environment information

2. provide high level diagrams

3. post WAN switch information and config where the FTD connected ?

4. when you mentioned basic config - what config you configured ? - by default FW deny all the traffic until you have any ACP rules to allow and routing in place ?

I have checked the running config and everything looks fine.

what have you checked ? are you able to ping WAN IP ? from WAN to FTD are you able to ping ?

from FTD it self you able to reach out ?

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card