Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1936
Views
10
Helpful
2
Replies

can we use FMC without licensing only for IP base filtering ?

Go to solution
hashimwajid1
Level 3
Level 3

‎12-16-2017 08:57 AM - edited ‎02-21-2020 06:58 AM

Hi 

i have single FTD 2110 which will be use for IP base filtering between multiple VLANs. there is no License for this FTD as it will be use only for IP base filtering only. 

my question is can i install FMC and Integrate this FTD with FMC and use FMC for only making policy up to layer 3 filtering without any smart licensing or registering the FMC and FTD ?   

i dont have any PAK for this FTD and FMC 

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎12-16-2017 06:09 PM

All FTD appliances require, at a minimum, the Threat license to operate. FMC likewise must be licensed.

 

Both should be registered to your organization's Smart license account. You can start out with an evaluation license; but that is good for only 90 days and cannot be extended.

View solution in original post

2 Replies 2

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎12-16-2017 06:09 PM

All FTD appliances require, at a minimum, the Threat license to operate. FMC likewise must be licensed.

 

Both should be registered to your organization's Smart license account. You can start out with an evaluation license; but that is good for only 90 days and cannot be extended.

Go to solution
phoar
Level 1
Level 1
In response to Marvin Rhoads

‎04-26-2018 12:20 AM

I too have been asking this question and found the following entry in the firepower configuration guide that states a base license is sufficient for basic firewalling. The other licenses are optional:

https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/licensing_the_firepower_system.html#reference_A00D8504BBA84A27B07B74014AA7337A

 

Base Licenses

The Base license allows you to:

  • implement user and application control by adding user and application conditions to access control rules

     

  • configure your Firepower Threat Defense devices to perform switching and routing (including DHCP relay and NAT)

     

  • configure Firepower Threat Defense devices as a high availability pair

     

  • configure security modules as a cluster within a Firepower 9300 chassis (intra-chassis clustering)

     

  • configure Firepower 9300 or Firepower 4100 series devices running Firepower Threat Defense as a cluster (inter-chassis clustering)

     

Your purchase of a Firepower Threat Defense device or Firepower Threat Defense Virtual automatically includes a Base license. All additional licenses (Threat, Malware, or URL Filtering) are optional.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card