Configure The Asa Firepower Module; Configure The Security Policy On The Asa Firepower Module; Redirect Traffic To The Asa Firepower Module - Cisco ASA Series Configuration Manual
Firewall cli, asa services module, and the adaptive security virtual appliance
Hide thumbs
Also See for ASA Series:
- Cli configuration manual (2164 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Configure the ASA FirePOWER Module
•
•
•
Close the console connection. For the software module, enter:
Step 4
> exit
Configure the ASA FirePOWER Module
Configure the security policy in the ASA FirePOWER OS, and then configure the ASA to send traffic to
the module.
•
•
Configure the Security Policy on the ASA FirePOWER Module
The security policy controls the services provided by the module, such as Next Generation IPS filtering
and application filtering. You configure the security policy on the ASA FirePOWER module using one
of the following methods.
For more information about ASA FirePOWER configuration, see the online help or the
FirePOWER Module User Guide
FireSIGHT Management Center (All Models)
Use a web browser to open https://DC_address, where DC_address is the DNS name or IP address of
the manager you defined in
https://dc.example.com.
Alternatively, in ASDM, choose Home > ASA FirePOWER Status and click the link at the bottom of
the dashboard.
ASDM (ASA 5506-X, 5508-X, and 5516-X)
In ASDM, choose Configuration > ASA FirePOWER Configuration.
Redirect Traffic to the ASA FirePOWER Module
For inline and inline tap (monitor-only) modes, you configure a service policy to redirect traffic to the
module. If you want passive monitor-only mode, you configure a traffic redirection interface, which
bypasses ASA policies.
The following topics explain how to configure these modes.
Cisco ASA Series Firewall CLI Configuration Guide
7-10
{hostname | IPv4_address | IPv6_address | DONTRESOLVE} specifies either the fully qualified
host name or IP address of the FireSIGHT Management Center. If the FireSIGHT Management
Center is not directly addressable, use DONTRESOLVE.
reg_key is the unique alphanumeric registration key required to register a ASA FirePOWER module
to the FireSIGHT Management Center.
nat_id is an optional alphanumeric string used during the registration process between the
FireSIGHT Management Center and the ASA FirePOWER module. It is required if the hostname is
set to DONTRESOLVE.
Configure the Security Policy on the ASA FirePOWER Module, page 7-10
Redirect Traffic to the ASA FirePOWER Module, page 7-10
Configure ASA FirePOWER Basic Settings, page
or
FireSIGHT System User
Chapter 7
ASA FirePOWER Module
Guide.
7-9. For example,
ASA
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
