01-29-2016 11:13 AM - edited 03-12-2019 05:53 AM
We want to configure firepower ips with FSM in production environment.
what are the precaution taken while using this product in live environment??
Do we need to configure ASA- Firepower ips in monitor mode? if yes, then how we can configure it??
Whats is cisco recommended ips policies over exiting default policies ie "balanced connectivity over security/connectivity over security etc ??"
01-29-2016 11:28 AM
Hi,
If you put that in monitor only mode then no action will be taken on the packets.
Just to be sure as it is the first deployment you can initially place it in monitor-only mode and then change it to inline mode later.
The below links define how can you to do the setup:
Refer link : http://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/sfr/firepower-qsg.html
http://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/118644-configure-firepower-00.html
Regards,
Aastha Bhardwaj
Rate if that helps!!!
01-29-2016 01:32 PM
I would really like some guidance in regards to this question.
Whats is cisco recommended ips policies over exiting default policies ie "balanced connectivity over security/connectivity over security etc ??"
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide