EasyManua.ls Logo

Cisco Firepower 4110 User Manual

Cisco Firepower 4110
72 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #69 background imageLoading...
Page #69 background image
Cisco Preparative Procedures & Operational User Guide
© 2016 Cisco Systems, Inc. All rights reserved.
4.5.7 Logical Device Management
When you create a logical device, the FXOS chassis supervisor deploys the logical device by
downloading the specified software version and pushing the bootstrap configuration and management
interface settings to the specified security module/engine, or in the case of an intra-chassis cluster, to all
security modules installed in the Firepower chassis.
4.5.7.1 Create a ASA Logical Device via CLI
You can create a standalone logical device for each security module/engine installed in the FXOS chassis.
1) Enter security services mode:
Firepower# scope ssa
2) Create the logical device:
Firepower /ssa # create logical-device device_name asa slot_id standalone
3) Enter a description for the logical device:
Firepower /ssa/logical-device* # set description "logical device
description"
4) Assign the management and data interfaces to the logical device:
Firepower /ssa/logical-device* # create external-port-link name
interface_name asa
Firepower-chassis /ssa/logical-device/external-port-link* # exit
5) Configure the management bootstrap information:
a) Create bootstrap object:
Firepower /ssa/logical-device* # create mgmt-bootstrap asa
b) Create enable password:
Firepower /ssa/logical-device/mgmt-bootstrap* # create bootstrap-key-
secret PASSWORD
c) Set password value:
Firepower /ssa/logical-device/mgmt-bootstrap/bootstrap-key-secret* # set
value
Value: password
d) Exit password configuration scope:
Firepower /ssa/logical-device/mgmt-bootstrap/bootstrap-key-secret* # exit
e) Configure management IP address:
Firepower /ssa/logical-device/mgmt-bootstrap* # create ipv4 slot_id
default
f) Set gateway address:
Firepower /ssa/logical-device/mgmt-bootstrap/ipv4* # set gateway
gateway_address
g) Set IP address and mask:

Table of Contents

Other manuals for Cisco Firepower 4110

Preview: Hardware Installation Guide
Hardware Installation Guide84 pages
Preview: Manual
Manual26 pages
Question and Answer IconNeed help?

Do you have a question about the Cisco Firepower 4110 and is the answer not in the manual?

Cisco Firepower 4110 Specifications

General IconGeneral
Power SupplyDual, hot-swappable
Form Factor1RU
Firewall Throughput (Multiprotocol)10 Gbps
Number of 10GE (SFP+) Interfaces8
Number of 40GE (QSFP+) Interfaces2
Redundant Power SupplyYes
Memory32 GB
Ports8 x 10GE, 2 x 40GE
Concurrent Sessions8 Million
Number of 10/100/1000 Interfaces8
Maximum Connections8 Million
Management Ports1 x RJ45
Data Ports8 x 10GE, 2 x 40GE
ProcessorIntel Xeon E5-2600

Summary

Introduction and Operational Environment

1.1 Common Criteria Evaluated Configuration

Defines requirements for a secure system deployment under Common Criteria.

2.1 Operational Environment Components

Lists essential system components like management workstations and servers.

2.2 Environmental Assumptions

Specifies expected conditions for the operational environment and administrators.

Assurance Activity Configuration

4.1 Logging into the Appliance

Guides users on accessing the Firepower Chassis Manager via web or CLI.

4.3 Enable FIPS and CC Mode

Details enabling FIPS and Common Criteria modes for enhanced security compliance.

4.4 Configure Secure Connections

Covers secure connections using Syslog, LDAP, RADIUS, TACACS+, and IPsec.

System Management and Configuration

4.5.1 IP Management and Pre-Login Banner

Covers changing management IP addresses and setting pre-login banners.

4.5.2 Image Management

Explains managing platform bundle and application images for FXOS chassis.

4.5.3 User and Role Management

Details user account creation, roles, and authentication service selection.

4.5.6 Configure PKI

Describes Public Key Infrastructure configuration for HTTPS and IPsec.

System Self-Tests

4.6 Self-Tests

Details FIPS 140-2 self-tests during power-up and potential failure scenarios.

Related product manuals