cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
609
Views
0
Helpful
1
Replies

FirePower Threat Defence 6.1 Device Manager limitations

smith.dean
Level 1
Level 1

So I re-imaged an ASA 5506-X to a Firepower Threat Defence image 6.1 with the new FirePower Device Manager.  This is very appealing for small customer Internet connections without the need for running a separate Firepower Management Centre so I was keen to test it out.  Hit a road block at the first configuration as according to the 6.1 configuration guide :

  • You cannot configure PPPoE for IPv4. If the Internet interface is connected to a DSL, cable modem, or other connection to your ISP, and your ISP uses PPPoE to provide your IP address, you must use Firepower Management Center to configure these settings.

So the only time you would probably want to use the Device Manager is on small site / home Internet connections where you don't want to run a FMC.  Except it appears this use case is not possible to configure your Internet connection without FMC if your connection is dependent on PPPoE (highly likely).

WHAT IS THE POINT CISCO?  That is #$#@!  To my knowledge, you can't even configure PPPoE on the interface via the CLI.  Congrats on a pointless release.

1 Reply 1

itsupport
Level 1
Level 1

I have the same problem. A majority of ADSL modems support "half bridge mode", this is what I plan to use, and it should work.

I feel your pain with the limitations, from where I sit, Firepower Thread Defence is not quite ready for production use yet, the quality is more like a late beta. Too many bugs and limitations, and a fair bit of functionality is still being developed.

Here are a couple of write-ups on half bridge setting for a couple of SOHO ADSL devices:

http://media.netcomm.com.au/public/assets/pdf_file/0004/69277/Half_Bridge_Mode_Setup_Guide_03_03_11.pdf
http://www.broadbandbuyer.com/features/2423-how-to-set-up-a-billion-bipac-8800nl-in-ppp-half-bridge-mode/

Review Cisco Networking for a $25 gift card