Firepower 2110 Dual-ISP failover with web FDM GUI

QBC · ‎11-20-2018

I'm looking to set up a Firepower 2110 Threat Defense using the Firepower Device Manager GUI.
I have a single outside interface set to the main ISP that all traffic is currently routing through, but also have a secondary outside interface for a second ISP.
The secondary interface shows that the link is up, and it acquired an IP address, but what I can't find in the FDM is any way to have it fail over to the second WAN when the first is unavailable.

I've found countless guides on doing this using SLA, but unfortunately, neither the CLI, nor the FlexConfig on the FP2110 seem to allow those commands.

Is there any good method to configure a simple ISP failover on this device?

balaji.bandi · ‎11-20-2018

this video may help you understand how you can achieve this

https://www.youtube.com/watch?v=MKcSBTJ55e8&t=18s

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

QBC · ‎11-21-2018

Hello,
Thank you for the reply, but I was hoping to find a way to achieve this using the Firepower Device Manager built into the 2110 device (https management login) or the fxos SSH console.

We don't have an FMC available at this point.

balaji.bandi · ‎11-21-2018

Once you understand the concept deploying in FDM like a ASA.

below FDM Cisco videos should help you.

https://www.youtube.com/watch?v=PW8EnCBafXw&list=PLpTzgIVB0QBvsGCWw1ElsV8X8qyheMCs8&index=1

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help