1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Firewall
  5. Firepower 2100 Series
  6. Getting started manual

Configure A Basic Security Policy - Cisco Firepower 2100 Series Getting Started Manual

Hide thumbs Also See for Firepower 2100 Series:
Table of Contents

Advertisement

Configure a Basic Security Policy

• Unique NAT ID—Specify the NAT ID you specified in the FTD initial configuration.
• Transfer Packets—Allow the device to transfer packets to the FMC. When events like IPS or Snort are
Step 3
Click Register, and confirm a successful registration.
If the registration succeeds, the device is added to the list. If it fails, you will see an error message. If the FTD
fails to register, check the following items:
• Ping—Access the FTD CLI, and ping the FMC IP address using the following command:
• Registration key, NAT ID, and FMC IP address—Make sure you are using the same registration key,
Configure a Basic Security Policy
This section describes how to configure a basic security policy with the following settings:
• Inside and outside interfaces—Assign a static IP address to the inside interface, and use DHCP for the
• DHCP server—Use a DHCP server on the inside interface for clients.
• Default route—Add a default route through the outside interface.
• NAT—Use interface PAT on the outside interface.
• Access control—Allow traffic from inside to outside.
To configure a basic security policy, complete the following tasks.
Cisco Firepower 2100 Getting Started Guide
38
triggered with this option enabled, the device sends event metadata information and packet data to the
FMC for inspection. If you disable it, only event information will be sent to the FMC, but packet data is
not sent.
ping system ip_address
If the ping is not successful, check your network settings using the show network command. If you need
to change the FTD IP address, use the configure network {ipv4 | ipv6} manual command.
and if used, NAT ID, on both devices. You can set the registration key and NAT ID on the FTD using
the configure manager add command. This command also lets you change the FMC IP address.
outside interface.
Configure Interfaces, on page
Configure the DHCP Server, on page
Add the Default Route, on page
Configure NAT, on page
39.
42.
43.
44.
Firepower Threat Defense Deployment with FMC
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Cisco Firepower 2100 Series

Related Content for Cisco Firepower 2100 Series

This manual is also suitable for:

Firepower 2110Firepower 2120Firepower 2130Firepower 2140Firepower 2100

Table of Contents