Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1403
Views
0
Helpful
1
Replies

Best Design for Multiple Devices in FMC

dan hale
Level 3
Level 3

‎08-13-2018 11:20 AM - edited ‎02-21-2020 08:05 AM

Hi All, I have a FMC running on version 6.2.2. Currently we have 2 4110's in an HA at one of our sites. We are replacing two HA ASA's at another remote site with 2 more 4110's which I plan to put in HA.

 

My question is I know I should have separate interface groups in the FMC for the new site but, should I also create a separate security zone for the new HA 4110's. Should I take it a step further and when I name my interfaces at the new site name them something completely different than inside, outside, DMZ which is what I have now at the production main site.

 

Any issues with the above?

 

Thanks,

Dan

0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-14-2018 10:19 PM

There's no need to name them differently.

 

You can simply use a unique Access Control Policy. The original ACP targets the first HA pair and the new one targets the second.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card