cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2690
Views
25
Helpful
10
Replies

How to configure HA on 2110

prashanma
Level 1
Level 1

Hi Team,

 

How to configure HA on Firepower 2110 using FDM or command line ? Can anyone help me out here ?

10 Replies 10

Hi,

FTD cannot be configured via CLI, so you'll have to use FDM. Here is the FDM guide for configuring HA.

 

HTH

Hello RJI,
I have 6.2.2 version. Seems I'm not able to configure the HA using FDM. Can we configure HA using 6.2.2

High availability configuration for devices that are locally managed using FDM was introduced in version 6.3.

If you remain on 6.2.x you would need to change over the Firepower Management Center (FMC) management in order to configure HA on your Firepower 2110 appliances running FTD.

References:

https://www.cisco.com/c/en/us/td/docs/security/firepower/630/relnotes/firepower-release-notes-630/new_features.html#concept_D3A005FB2B0E45BBBDF5392C4D1DD138

https://www.cisco.com/c/en/us/td/docs/security/firepower/630/fdm/fptd-fdm-config-guide-630/fptd-fdm-ha.html

Thank you Marvin,

 

Is there any procedure to follow upgrade 6.2 to 6.3/6.4 ? Or I just need to download the software from tools and upload it to firewall

FTD FDM upgrade guide here.


Make sure you backup the configuration and copy the backup file to a secure location before you perform the upgrade.

 

HTH

Read the release notes. The procedure is mostly like you say but details are important to note and follow.

Yes the IPS/IDS features are configured via FDM (or CDO or FMC).

Hi Marvin and RJI,

 

Do we need to upgrade FXOS at the same time ? FXOS version is 2.2 at the moment

Hi,
As far as I am aware the 2100 series appliances uses a single bundle that contains both FXOS and FTD images, so the installation/upgrade procedures are different to the 4100/9300 appliances.

HTH

Thank you for your inputs
Yes your correct RJI, I found cisco document for which verify your comment above

"Firepower 1000 and Firepower 2100 series devices use the FXOS operating system. Upgrading Firepower Threat Defense automatically upgrades FXOS. For information on the FXOS version bundled with each Firepower version" https://www.cisco.com/c/en/us/td/docs/security/firepower/compatibility/firepower-compatibility.html#id_67425

At the sametime can we enable IPS and IDS via FDM

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: