If you still have problems then you can see all the debugging messages in a separate SSH session to the sensor.Ī good way to debug any Cisco Firepower appliance is to use the pigtail command. These options reestablish the secure channels between both peers, verifying the certificates and creating new config file on the backend. This scripts are nice to be used when the FMC and FTD have communication problems like heartbeats are not received, policy deployment is failing or events are not received. If you run it from the FTD then only the particular sensor – FMC communication will be affected. Be careful, if you run it from the FMC and you have hundreds of sensors it will reestablish all communication channels to all of your sensors at once.
It allows you to restart the communication channel between both devices. It can be run from the FTD expert mode or the FMC. There is a script included in the Cisco Firepower system called manage_ (use it wisely). As they are run from the “expert mode” (super user), it is better that you have a deep understanding of any potential impact on the production environment. In this post we are going to focus on the scripts included in FTD and FMC operating systems that help to troubleshoot connections between FTD sensors and Cisco Firepower Management Center.