Re: Firepower Management Center

arturzegre · ‎01-25-2017

Hi Guys

I've doubt regarding FTD, I hope you can clarify me.

In platform Firepower v5.4, that can manage ASA 5500-X (FirePOWER Services only). I've a project that customer have around 30 Cisco ASA of 5505, 5510, and we're proposing a replacement, I'm considering 5506 using only Firewall services (ASA image).

My question is, FTD can manage this? Or I need to use Multidevice Cisco Security Manager .

If anyone can help me would be great .

Best Regards

syeda3 · ‎01-27-2017

Please see the below Cisco Firepower Compatibility Guide. It seems that you will be requiring Firepower 6.0.1, 6.1 or 6.2 to manage FTD on ASA 5506.

Cisco Firepower Compatibility Guide - Cisco

Cisco Firepower Threat Defense for the ASA 5506-X Series Using Firepower Management Center Quick Start Guide - Cisco

Cisco Firepower Threat Defense for the ASA 5506-X Series and Firepower Device Manager Quick Start Guide - Cisco

Hope to help.

leciscokid · ‎02-06-2017

If you're only managing security policy on the ASAs (Layer 4 type policy, five-tuple ACL and NAT , VPN) you're really better off with CDO.

http://www.cisco.com/c/dam/en/us/products/collateral/security/defense-orchestrator/at-a-glance-c45-736943.pdf

If you don't intend to run Firepower Services (Threat, AMP, URL)

jai.singla · ‎02-07-2017

I guess, Best thing can be done here if you dont have FMC hardware, install it on the VM, add the remote ASA ( have software based SFR modules). There you can add the licensing as per requirement i;e protection,control, AMP etc at FMC for each remote SFR

arturzegre · ‎02-08-2017

HI Guys

Thanks for the feedback.

I propose Cisco Defense Orchestrator for ASA5506, that was the better solution I found in this case, because the competion is proposing a FWaaS.

Thank you all.

Kind Regards