Table of Contents
Advertisement
Configure a Basic Security Policy
• Ping—Access the FTD CLI, and ping the FMC IP address using the following command:
• Registration key, NAT ID, and FMC IP address—Make sure you are using the same registration key,
For more troubleshooting information, see https://cisco.com/go/fmc-reg-error.
Configure a Basic Security Policy
This section describes how to configure a basic security policy with the following settings:
• Inside and outside interfaces—Assign a static IP address to the inside interface, and use DHCP for the
• DHCP server—Use a DHCP server on the inside interface for clients.
• Default route—Add a default route through the outside interface.
• NAT—Use interface PAT on the outside interface.
• Access control—Allow traffic from inside to outside.
• SSH—Enable SSH on the FMC access interface.
To configure a basic security policy, complete the following tasks.
Cisco Firepower 1100 Getting Started Guide
132
ping system ip_address
If the ping is not successful, check your network settings using the show network command. If you need
to change the FTD Management IP address, use the configure network management-data-interface
command.
and if used, NAT ID, on both devices. You can set the registration key and NAT ID on the FTD using
the configure manager add command.
outside interface.
Configure Interfaces, on page
Configure the DHCP Server, on page
Add the Default Route, on page
Configure NAT, on page
Allow Traffic from Inside to Outside, on page
Configure SSH on the FMC Access Data Interface, on page
Deploy the Configuration, on page
Firepower Threat Defense Deployment with a Remote FMC
101.
104.
105.
107.
109.
112.
110.
Hide quick links:
Advertisement
Table of Contents
