Cisco Firepower 1010 Getting Started Manual page 143

Threat Defense Deployment with CDO
After you complete the setup wizard, in addition to the default configuraton for the inside interface (Ethernet1/2
through 1/8, which are switch ports on VLAN1)., you will have configuration for an outside (Ethernet1/1)
interface that will be maintained when you switch to CDO management.
a) Configure the following options for the outside and management interfaces and click Next.
1. Outside Interface Address—This interface is typically the internet gateway, and might be used as
2. Management Interface
b) Configure the Time Setting (NTP) and click Next.
1. Time Zone—Select the time zone for the system.
2. NTP Time Server—Select whether to use the default NTP servers or to manually enter the addresses
c) Select Start 90 day evaluation period without registration.
Do not register the threat defense with the Smart Software Manager; all licensing is performed in CDO.
d) Click Finish.
e) You are prompted to choose Cloud Management or Standalone. For the CDO cloud-delivered
management center, choose Standalone, and then Got It.
The Cloud Management option is for legacy CDO/FDM functionality.
Step 4 (Might be required) Configure the Management interface. See the Management interface on Device >
Interfaces.
your manager access interface. You cannot select an alternative outside interface during initial device
setup. The first data interface is the default outside interface.
If you want to use a different interface from outside (or inside) for manager access, you will have to
configure it manually after completing the setup wizard.
Configure IPv4—The IPv4 address for the outside interface. You can use DHCP or manually enter
a static IP address, subnet mask, and gateway. You can also select Off to not configure an IPv4 address.
You cannot configure PPPoE using the setup wizard. PPPoE may be required if the interface is
connected to a DSL modem, cable modem, or other connection to your ISP, and your ISP uses PPPoE
to provide your IP address. You can configure PPPoE after you complete the wizard.
Configure IPv6—The IPv6 address for the outside interface. You can use DHCP or manually enter
a static IP address, prefix, and gateway. You can also select Off to not configure an IPv6 address.
You will not see Management Interface settings if you performed intial setup at the CLI.
The Management interface settings are used even though you are enabling the manager access on a
data interface. For example, the management traffic that is routed over the backplane through the data
interface will resolve FQDNs using the Management interface DNS servers, and not the data interface
DNS servers.
DNS Servers—The DNS server for the system's management address. Enter one or more addresses
of DNS servers for name resolution. The default is the OpenDNS public DNS servers. If you edit the
fields and want to return to the default, click Use OpenDNS to reload the appropriate IP addresses
into the fields.
Firewall Hostname—The hostname for the system's management address.
of your NTP servers. You can add multiple servers to provide backups.
Perform Initial Configuration Using the Device Manager
Cisco Firepower 1010 Getting Started Guide
141