cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
469
Views
0
Helpful
4
Replies

Firepower device management options

RANT
Level 1
Level 1

I'm going to be transitioning from ASAs to Firepower devices. Is it better to manage a small number of devices locally, or to utilize FMC (which obviously has a sizeable $$ commitment)?

4 Replies 4

MrButton
Level 1
Level 1

FMC is good for growth.  It's a simple OVA file you get and load on VMware.  Think of it like Cisco Prime.  A central point of mgmt.  

@RANT you've got 3 options: FMC, FDM (local) or CDO (cloud). Ideally you'd use the FMC to manage the firewall, as it supports more features than if using FDM or CDO. It depends on exactly what features you require from the solution.

I guess my question is, what does the central management option do for me that FDM/CDO doesn't?

For anything other than the most basic features FMC will serve you better. You get a single place to manage the devices from, consolidated and historical reporting, management of a single set of objects, access to many more advanced settings etc.

You also now (as of July 2022) have the option of cloud-delivered FMC (cdFMC) built into CDO.

The few customers I have who went with FDM only are unhappy with their decision. One even switched to FMC later at considerable effort.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: