01-26-2024 03:55 AM - edited 01-26-2024 04:57 AM
Hello
I have a Firepower 1120 with no Internet access.
How do I configure the device to use internal DNS and NTP?
Thanks
01-26-2024 04:03 AM - edited 01-26-2024 04:27 AM
@dasadmin configure a platform settings policy with the required NTP and DNS servers and assign to the managed FTDs.
https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/device-config/720/management-center-device-config-72/interfaces-settings-platform.html
01-26-2024 04:58 AM
Hello - apologies - I mistyped the title (now corrected) - the device is manged locally in FDM.
I cannot see how to specify an interface for the requests to leave, like you used to in classic ASA..?
01-26-2024 05:08 AM
@dasadmin on FDM DNS and NTP uses the data or management interface, depending on what you have configured for management.
https://www.cisco.com/c/en/us/td/docs/security/firepower/720/fdm/fptd-fdm-config-guide-720/fptd-fdm-system.html#id_73499
01-26-2024 06:59 AM
The FTD as I know can not config as internal DNS (DNS from client proxy by FTD) which we can config in ASA before.
You need DNS server connect to FTD for that'
The DNS config in FTD is use for
1- mgmt traffic
2- data traffic (when we use fqdn in acl or NAT)
For NTP this how can make FTD client
https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/215468-configure-verify-and-troubleshoot-netwo.html
For make it server I will check abd update you
MHM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
