Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2817
Views
5
Helpful
2
Replies

FTD 1140 - FDM/FMC ?

DavidGray77695
Level 1
Level 1

‎06-10-2020 01:59 AM - edited ‎06-10-2020 02:12 AM

Hello,

 

Just looking for some clarity around a deployment we are looking to do for a customer. So Basically they are looking to put in FTD 1140's at multiple sites. We will be looking to configure sub-interfaces on this and then the usual ACL's etc for each sub interface.  If I remember FDM does not support configuring etherchannel, and that needs to be done via FMC?

 

Also, we have a FMC 6.2.3 installed in our core that we use for our firepower modules on our 5585's, DO you think it would be OK to bring the 1140s into the FMC? Or do we need to look at an upgrade for it to support the 1140s?

 

For Clarity, our FMC is a FMCv, and it looks like we use classic licenses, not smart licensing. Not sure if this would require an additional license for our FMCv?

0 Helpful
2 Replies 2

Sheraz.Salim
VIP
VIP

‎06-10-2020 02:53 AM

Just looking for some clarity around a deployment we are looking to do for a customer. So Basically they are looking to put in FTD 1140's at multiple sites. We will be looking to configure sub-interfaces on this and then the usual ACL's etc for each sub interface. If I remember FDM does not support configuring etherchannel, and that needs to be done via FMC?

 

If you managed the FTD 1140 from the FMC in that case all the configuration will be push from the FMC. FMC with FTD 1140 etherchannel is supported here 

 

 

Also, we have a FMC 6.2.3 installed in our core that we use for our firepower modules on our 5585's, DO you think it would be OK to bring the 1140s into the FMC? Or do we need to look at an upgrade for it to support the 1140s?

 

FMC and FTD will work fine. however you need to check with software version you running on FTD. but should not be an issue.

 

 

 

For Clarity, our FMC is a FMCv, and it looks like we use classic licenses, not smart licensing. Not sure if this would require an additional license for our FMCv?

FTD only work with smartnet license. if yo have a smartnet lic you can easily convert/get a token from the cisco smartnet.

please do not forget to rate.
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-10-2020 11:07 PM

A Firepower 1140 running FTD requires version 6.4+.

https://www.cisco.com/c/en/us/td/docs/security/firepower/compatibility/firepower-compatibility.html#id_60525

So, if you choose to manage it with FMC, the FMC must be upgraded.

Upgrading a virtual FMC to version 6.6+ requires increasing the allocated memory to at least 28 GB.

https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/fmcv/fpmc-virtual/fpmc-virtual-vmware.html#id_82840

Newer versions of FDM allow you to configure both Etherchannels and subinterfaces.

https://www.cisco.com/c/en/us/td/docs/security/firepower/660/fdm/fptd-fdm-config-guide-660/fptd-fdm-interfaces.html#task_4FA3FC2F83774196A854661C2C85D434

You could also use Cisco Defense Orchestrator (CDO). That's a very attractive option for remote site deployments.

 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card