Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1848
Views
0
Helpful
4
Replies

Firepower 1010 dhcp option configuration

djpk05
Level 1
Level 1

‎08-04-2021 12:01 PM

Hi,

I'm trying to configure my first Firepower 1010 replacing Fortigate.  Few things I'm stuck at the moment.

1. How can I configure dhcp options like 150?  I don't see that options anywhere in the FDM gui.  

2. Is there anything like software switch feature like Fortigate has?  I have a Cisco VoIP phone that is attached to Fortigate using sofware switch.

 

I'd really appreciate if you can suggest anything.

Thanks.

 

Peter

0 Helpful
4 Replies 4

Rob Ingram
VIP
VIP

‎08-04-2021 12:10 PM

@djpk05 

No those DHCP options aren't configurable in FDM, you may be able to use FlexConfig and use the ASA syntax to deploy the command to the FTD.

 

The FPR1010 supports configuring interfaces as switch ports, refer here:-

https://www.cisco.com/c/en/us/td/docs/security/firepower/660/fdm/fptd-fdm-config-guide-660/fptd-fdm-interfaces.html#concept_32B051978CC24E7EA8361AB5384FB145

 

0 Helpful

djpk05
Level 1
Level 1

‎08-04-2021 12:27 PM

Thanks for your quick reply.  I was reading about FlexConfig.  I'm little confused on FlexConfig.  How do I use FlexConfig?  Is it from CLI?  I'm sorry if I am asking a stupid question.  Thanks for your help.

0 Helpful

Rob Ingram
VIP
VIP
In response to djpk05

‎08-04-2021 12:35 PM - edited ‎08-04-2021 12:41 PM

@djpk05 Some of the FTD commands are configurable using ASA syntax and are available to be deployed to the FTD using only Flexconfig only. Flexconfig is configurable using FDM GUI only, not CLI. Refer to this link for more information.

https://www.cisco.com/c/en/us/td/docs/security/firepower/660/fdm/fptd-fdm-config-guide-660/fptd-fdm-advanced.html

 

Below is an example how to configure Flexconfig using FDM, it's not to deploy the DHCP option you require, but it will hopefully help you to configure.

https://networkwizkid.com/2021/04/15/cisco-secure-firewall-snmp-using-firepower-device-manager-fdm/

 

IMO, if possible you are probably better configuring DHCP on another device than the FTD. As you've noted you don't easily have the ability to apply advanced configuration.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to djpk05

‎08-04-2021 12:37 PM

Kind of CLI, but done on GUI (Tweak)

 

Not sure and familiar with FDM it works i guess.

 

Full features of FTD using FMC are good options.

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/623/fdm/fptd-fdm-config-guide-623/fptd-fdm-advanced.html

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/flexconfig_policies.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card