08-04-2022 11:26 AM
I'm going to be transitioning from ASAs to Firepower devices. Is it better to manage a small number of devices locally, or to utilize FMC (which obviously has a sizeable $$ commitment)?
08-04-2022 11:43 AM
FMC is good for growth. It's a simple OVA file you get and load on VMware. Think of it like Cisco Prime. A central point of mgmt.
08-04-2022 11:47 AM
@RANT you've got 3 options: FMC, FDM (local) or CDO (cloud). Ideally you'd use the FMC to manage the firewall, as it supports more features than if using FDM or CDO. It depends on exactly what features you require from the solution.
08-04-2022 01:04 PM
I guess my question is, what does the central management option do for me that FDM/CDO doesn't?
08-05-2022 01:02 AM
For anything other than the most basic features FMC will serve you better. You get a single place to manage the devices from, consolidated and historical reporting, management of a single set of objects, access to many more advanced settings etc.
You also now (as of July 2022) have the option of cloud-delivered FMC (cdFMC) built into CDO.
The few customers I have who went with FDM only are unhappy with their decision. One even switched to FMC later at considerable effort.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide