cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


1218
Views
5
Helpful
4
Replies
Highlighted

Firepower 4110 with FTD

Hello

I just received a new firepower appliance 4110 for configuration. the first thing i noticed is that i need separate chassis and FTD management interfaces. Also there is a type of interface known as eventing interface.

My question is if is it mandatory to use 3 interfaces only for management and eventing? (1 for chassis FXOS, 1 for FTD, 1 for eventing). Is there some way to use only one interface for these three roles.

many thanks in advance, best regards,

Everyone's tags (5)
1 ACCEPTED SOLUTION

Accepted Solutions
VIP Advocate

I believe that the interfaces

I believe that the interfaces need to be seperate.

https://supportforums.cisco.com/discussion/13159386/can-firepower-4100-management-port-be-used-both-chassi-manager-and-ftd

http://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/fxos201/cli-config/b_CLI_ConfigGuide_FXOS_201/interface_management.pdf

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to rate and select a correct answer
4 REPLIES 4
VIP Advocate

I believe that the interfaces

I believe that the interfaces need to be seperate.

https://supportforums.cisco.com/discussion/13159386/can-firepower-4100-management-port-be-used-both-chassi-manager-and-ftd

http://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/fxos201/cli-config/b_CLI_ConfigGuide_FXOS_201/interface_management.pdf

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to rate and select a correct answer
Beginner

I have an additional question

I have an additional question about dedicated FTD mgmt/event port. Are their any special bandwidth requirements for this port? I am thinking to use existing 1Gbps OOB network instead of 10G connection between FMC and FTD.

I used SFP GLC-T 1 gpbs for

I used SFP GLC-T 1 gpbs for management/eventing, and it worked with no issues.

Hall of Fame Master

I pretty much agree with

I pretty much agree with Marius.

The chassis management interface is just for FirePOWER Chassis manager (GUI and ssh). While you can technically access the logical device cli via the chassis management interface, it requires an interactive context change after first logging in.

I'm not positive but I believe the FTD management and eventing can be on a single interface.

Data interfaces need to be separate and cannot be used for FTD management or eventing.