Cisco Firepower 2100 Getting Started Manual page 122

Firepower 2100 Platform Mode Default Configuration
Note For pre-9.13(1) versions, Platform mode was the default and only option. If you upgrade from Platform mode,
this mode is maintained.
ASA Configuration
The default factory configuration for the ASA on the Firepower 2100 configures the following:
• inside→outside traffic flow—Ethernet 1/1 (outside), Ethernet 1/2 (inside)
• outside IP address from DHCP, inside IP address—192.168.1.1
• DHCP server on inside interface
• Default route from outside DHCP
• management—Management 1/1 (management), IP address 192.168.45.1
• ASDM access—Management hosts allowed.
• NAT—Interface PAT for all traffic from inside to outside.
• FXOS management traffic initiation—The FXOS chassis can initiate management traffic on the ASA
outside interface.
• DNS servers—OpenDNS servers are pre-configured.
The configuration consists of the following commands:
interface Management1/1
management-only
nameif management
security-level 100
ip address 192.168.45.1 255.255.255.0
no shutdown
!
interface Ethernet1/1
nameif outside
security-level 0
ip address dhcp setroute
no shutdown
!
interface Ethernet1/2
nameif inside
security-level 100
ip address 192.168.1.1 255.255.255.0
no shutdown
!
object network obj_any
subnet 0.0.0.0 0.0.0.0
nat (any,outside) dynamic interface
!
http server enable
http 192.168.45.0 255.255.255.0 management
!
dhcpd auto_config outside
dhcpd address 192.168.1.20-192.168.1.254 inside
dhcpd enable inside
!
Cisco Firepower 2100 Getting Started Guide
120
ASA Platform Mode Deployment with ASDM and Firepower Chassis Manager