Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
627
Views
0
Helpful
1
Replies

ASA 5506-X with FirePower services

Go to solution
Roy Lee
Level 1
Level 1

‎07-16-2018 11:48 PM - edited ‎02-21-2020 07:59 AM

Dear All,

We need to connect a branch office to headquarters by site to site VPN.

We got quotation from vendor for 5506-X with FirePower services with following items:

Capture.JPG

I think for site to site VPN, firepower is not necessary, but this is already the basic model.

I would like to know is it possible to disable the firepower function (or module?) and use purely ASA function?

Thanks.

Roy

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rahul Govindan
VIP Alumni
VIP Alumni

‎07-17-2018 03:21 AM

If you do not enable the Firepower functionality on the ASA, it works like a traditional ASA software. In order to enable Firepower services, you would need to

1) install the software on the Firepower software module

2) Register it to ASDM or FMC

3) pass traffic to it using a service policy. 

 

https://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/sfr/firepower-qsg.html#pgfId-150498

 

IF you don't do #3, you should be good to use it as an ASA doing just VPN. 

 

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Rahul Govindan
VIP Alumni
VIP Alumni

‎07-17-2018 03:21 AM

If you do not enable the Firepower functionality on the ASA, it works like a traditional ASA software. In order to enable Firepower services, you would need to

1) install the software on the Firepower software module

2) Register it to ASDM or FMC

3) pass traffic to it using a service policy. 

 

https://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/sfr/firepower-qsg.html#pgfId-150498

 

IF you don't do #3, you should be good to use it as an ASA doing just VPN. 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card