Preconfiguring Appliances - Cisco 7010 Installation Manual

Firepower 7000 series; firepower 8000 series

Hide thumbs Also See for 7010:

Product user manual (151 pages)

Help manual (132 pages)

Replacement instructions manual (23 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

page of 204

/ 204
Contents
Table of Contents
Bookmarks

Table of Contents

Preconfiguring Appliances

Table 1-7

Default Communication Ports for Firepower System Features and Operations (continued)

Port

Description

443/tcp

HTTPS

AMQP

cloud comms.

514/udp

syslog

623/udp

SOL/LOM

1500/tcp

database

access

2000/tcp

1812/udp

RADIUS

1813/udp

3306/tcp

User Agent

8302/tcp

eStreamer

8305/tcp

appliance

comms.

8307/tcp

host input

client

32137/tcp

cloud comms. Bidirectional

Preconfiguring Appliances

You can preconfigure multiple appliances and Firepower Management Centers in a central location for

later deployment at other sites. For considerations when preconfiguring appliances, see

Firepower Managed Devices, page

Firepower 7000 and 8000 Series Installation Guide

1-16

Direction

Is Open on...

Bidirectional

Management Center

7000 and 8000 Series

devices

7000 and 8000 Series,

virtual devices, and

ASA FirePOWER

Outbound

Any

Bidirectional

7000 and 8000 Series

Inbound

Management Center

Bidirectional

Any except virtual

devices and

ASA FirePOWER

Inbound

Management Center

Bidirectional

Any except virtual

devices

Bidirectional

Any

Bidirectional

Management Center

E-1.

Chapter 1

Introduction to the Firepower System

To...

obtain:

software, intrusion rule, VDB, and

•

GeoDB updates

URL category and reputation data (port

•

80 also required)

the Cisco Intelligence feed and other

•

secure Security Intelligence feeds

endpoint-based (FireAMP) malware

•

events

•

malware dispositions for files detected in

network traffic

dynamic analysis information on

•

submitted files

download software updates using the device's

local web interface.

submit files to the Cisco cloud for dynamic

analysis.

send alerts to a remote syslog server.

allow you to perform Lights-Out Management

using a Serial Over LAN (SOL) connection.

allow read-only access to the database by a

third-party client.

communicate with a RADIUS server for

external authentication and accounting.

communicate with User Agents.

communicate with an eStreamer client.

securely communicate between appliances in

a deployment. Required.

communicate with a host input client.

allow upgraded Management Centers to

communicate with the Cisco cloud.

Preconfiguring

Table of Contents

Show Quick Links

Hide quick links:

Chapters

Table of Contents

This manual is also suitable for:

7120 7115 7125 Amp7150 7020 7030 ... Show all

Preconfiguring Appliances - Cisco 7010 Installation Manual

Preconfiguring Appliances

Hide quick links:

Chapters

Related Manuals for Cisco 7010

Related Content for Cisco 7010

This manual is also suitable for:

Table of Contents