Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2135
Views
5
Helpful
4
Replies

Firepower 4110 with FTD

Go to solution
Julio Coral Orbes
Level 1
Level 1

‎01-25-2017 12:21 PM - edited ‎03-12-2019 01:50 AM

Hello

I just received a new firepower appliance 4110 for configuration. the first thing i noticed is that i need separate chassis and FTD management interfaces. Also there is a type of interface known as eventing interface.

My question is if is it mandatory to use 3 interfaces only for management and eventing? (1 for chassis FXOS, 1 for FTD, 1 for eventing). Is there some way to use only one interface for these three roles.

many thanks in advance, best regards,

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marius Gunnerud
VIP
VIP

‎01-26-2017 12:53 AM

I believe that the interfaces need to be seperate.

https://supportforums.cisco.com/discussion/13159386/can-firepower-4100-management-port-be-used-both-chassi-manager-and-ftd

http://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/fxos201/cli-config/b_CLI_ConfigGuide_FXOS_201/interface_management.pdf

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Marius Gunnerud
VIP
VIP

‎01-26-2017 12:53 AM

I believe that the interfaces need to be seperate.

https://supportforums.cisco.com/discussion/13159386/can-firepower-4100-management-port-be-used-both-chassi-manager-and-ftd

http://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/fxos201/cli-config/b_CLI_ConfigGuide_FXOS_201/interface_management.pdf

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
anazarenko
Level 1
Level 1
In response to Marius Gunnerud

‎01-26-2017 08:40 AM

I have an additional question about dedicated FTD mgmt/event port. Are their any special bandwidth requirements for this port? I am thinking to use existing 1Gbps OOB network instead of 10G connection between FMC and FTD.

0 Helpful

Go to solution
Julio Coral Orbes
Level 1
Level 1
In response to anazarenko

‎01-27-2017 07:20 AM

I used SFP GLC-T 1 gpbs for management/eventing, and it worked with no issues.

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Marius Gunnerud

‎01-26-2017 10:05 AM

I pretty much agree with Marius.

The chassis management interface is just for FirePOWER Chassis manager (GUI and ssh). While you can technically access the logical device cli via the chassis management interface, it requires an interactive context change after first logging in.

I'm not positive but I believe the FTD management and eventing can be on a single interface.

Data interfaces need to be separate and cannot be used for FTD management or eventing.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card