Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1191
Views
0
Helpful
1
Replies

Firepower FTD Remote box - Registration to FMC - Chicken or the Egg

Ralphy006
Level 1
Level 1

‎08-26-2019 07:47 AM - edited ‎02-21-2020 09:25 AM

Hi guys,

I'm a longtime ASA with Firepower user. First time FPR/FTD setup. I have a single FMC that manages all my IPS sensors (including remote sites). Typically, for a remote site, I setup the ASA first with VPN tunnels back to the office. And a layer 3 switch that includes a management network. Then I setup the IPS sensor that uses the routing/VPN of the switch and ASA to phone home to the FMC.

 

With the FPR/FTD.... the CLI is gone for configuration. How do I get the VPN tunnel up before the the box can phone home to FMC? Do I first configured it via FDM and then switch it to the FMC?

 

Am I being dumb and overthinking it?

 

Thanks in advance!

0 Helpful
1 Reply 1

Francesco Molino
VIP Alumni
VIP Alumni

‎08-26-2019 08:43 PM

Hi
When using a remote ftd with fmc, you can use registration based on nat id.
Check out this link with some explanation:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Device_Management_Basics.html

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card