12-14-2015 11:03 AM - edited 03-12-2019 05:50 AM
Hello,
I have installed SourceFire 7215 in my org and deployed FireSIGHT mgmt Center Virtual Appliance. i have added phy appliance to fireSight manager & installed required licenses. we have procured, control, protection & Malware license. I am currently using 6.0.0 version on physical appliance 7125 as well as on FireSight Virtual appliance.
Since this device is placed in internet EDGE. we are looking to deploy in routed mode, however my problem is i am not able to route traffic from INSIDE to OUTSIDE. i have created Virtual router and assigned to phy interface, in addition, created access policy to allow inside traffic to outside which is connected to SP.
i am not able to find appropriate doc, hence request you to help on the above issue.
12-16-2015 08:21 AM
I found this guide to useful in all of my SourceFire deployments. It's a few versions behind but it covers the 3D models and Cisco senors as well.
http://www.cisco.com/c/dam/en/us/td/docs/security/sourcefire/3d-system/53/Sourcefire_3D_System_User_Guide_v53.pdf
12-17-2015 04:43 AM
Thanks Troy for the sharing wonderful document.
Issue resolved!!!
01-24-2016 03:08 AM
Have you configured the routing and NAT policy to route the inside network traffic? Below link will help you to accomplish this.
http://www.cisco.com/c/en/us/td/docs/security/firesight/541/user-guide/FireSIGHT-System-UserGuide-v5401/Virtual-Routers.html#pgfId-7192364
http://www.cisco.com/c/en/us/td/docs/security/firesight/541/user-guide/FireSIGHT-System-UserGuide-v5401/NAT-Policies.html
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide