10-18-2015 10:34 PM - edited 03-12-2019 05:47 AM
Hi,
How to enable software bypass on clustered firepower 8350 devices.
Sometime during troubleshooting we need to bypass IPS for test-traffic. How to achieve this without physical cabling changes/switch config changes.
I see Access Control rule with Trust rule can also be used. need more information on software bypass option though.
Thanks
10-20-2015 01:27 PM
You are on the right track. If you create a rule with action as "Trust" traffic won't be sent to the inspection engine for analysis and would be simply allowed.
Thanks,
Dinkar
10-20-2015 11:25 PM
Hi Dinkar,
Thanks for the confirmation.
Can the below mentioned software bypass command be used for Clustered Firepower devices ;
configure bypass open <inetrface>
10-23-2015 11:07 AM
01-09-2016 03:47 PM
Hi Dinkar,
1) i need to upgrade software on 8350 sensor. can i type "configure bypass open s1p1" on one of the interface of each inline pair ( i have 5 inline sets) so i can upgrade the sensor and reboot without effective live traffic. ?
2) hope if i enable "configure bypass open s1p1" on one of the interface of inline set , IPS policy will not block all traffic and by pass traffic.
Thanks
02-06-2016 06:03 PM
I have the same issue.
1) i need to upgrade software on 8120 and 7120 sensor. we need to type "configure bypass open s1p1" on one of the interface of each inline pair ( i have 5 inline sets) so i can upgrade the sensor and reboot without effective live traffic. ?
2) hope if i enable "configure bypass open s1p1" on one of the interface of inline set , IPS policy will not block all traffic and by pass traffic.
10-23-2015 11:13 AM
Hi,
You cannot configure bypass mode for inline sets on clustered devices,
Regards,
Aastha
Rate if that helps!!!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: