10-18-2015 10:34 PM - edited 03-12-2019 05:47 AM
Hi,
How to enable software bypass on clustered firepower 8350 devices.
Sometime during troubleshooting we need to bypass IPS for test-traffic. How to achieve this without physical cabling changes/switch config changes.
I see Access Control rule with Trust rule can also be used. need more information on software bypass option though.
Thanks
10-20-2015 01:27 PM
You are on the right track. If you create a rule with action as "Trust" traffic won't be sent to the inspection engine for analysis and would be simply allowed.
Thanks,
Dinkar
10-20-2015 11:25 PM
Hi Dinkar,
Thanks for the confirmation.
Can the below mentioned software bypass command be used for Clustered Firepower devices ;
configure bypass open <inetrface>
10-23-2015 11:07 AM
01-09-2016 03:47 PM
Hi Dinkar,
1) i need to upgrade software on 8350 sensor. can i type "configure bypass open s1p1" on one of the interface of each inline pair ( i have 5 inline sets) so i can upgrade the sensor and reboot without effective live traffic. ?
2) hope if i enable "configure bypass open s1p1" on one of the interface of inline set , IPS policy will not block all traffic and by pass traffic.
Thanks
02-06-2016 06:03 PM
I have the same issue.
1) i need to upgrade software on 8120 and 7120 sensor. we need to type "configure bypass open s1p1" on one of the interface of each inline pair ( i have 5 inline sets) so i can upgrade the sensor and reboot without effective live traffic. ?
2) hope if i enable "configure bypass open s1p1" on one of the interface of inline set , IPS policy will not block all traffic and by pass traffic.
10-23-2015 11:13 AM
Hi,
You cannot configure bypass mode for inline sets on clustered devices,
Regards,
Aastha
Rate if that helps!!!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide