Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1140
Views
0
Helpful
7
Replies

More than 50 Domains

Firepowered
Level 1
Level 1

‎10-05-2019 08:53 AM - edited ‎02-21-2020 09:33 AM

Hello

 

I am on FMC 6.2.3, for visibility purpose (data usage etc) our initial deployment was such that every Site (Firewall) was configured as a separate domain. We are nearing the limit of 50 domains, obviously there are many others "sites" (Firewalls) that need to be added.

 

What is the way forward without buying an FMC for a region each?

 

PS: Our sites are spread across the Globe, region wise.

Thank you very much.

Labels:
0 Helpful
7 Replies 7

balaji.bandi
Hall of Fame
Hall of Fame

‎10-05-2019 02:49 PM

At this moment you do not have any other option - FMC only.

 

Maybe you can do Role-based Access from Centralise FMC - to maintain their own domain FTD.

 

make sense?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Firepowered
Level 1
Level 1
In response to balaji.bandi

‎10-06-2019 10:27 AM

Thank you, Balaji.

 

I am lost, sorry.

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎10-05-2019 10:55 PM

How you're using Firepower domains is a bit outside their intended purpose.

Have you considered adopting CDO as your management platform? It may address your requirements more easily.

0 Helpful

Firepowered
Level 1
Level 1
In response to Marvin Rhoads

‎10-06-2019 10:27 AM

Thanks Marvin.

 

The current design is strange, I believe the intention was to gather data site (Site) wise, but I can only guess. Btw, what really is the purpose of the Domains then?

 

No, I don't know much about CDO. Could you please link me up? How will it help us?

 

I am interested to know how we can continue using Firepower services across our estate without bothering too much about domains etc, or even redesigning!

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Firepowered

‎10-07-2019 03:06 AM

Domains are used for separation of administrative responsibilities. For example, the European team manages their own policies and devices while the Asia Pacific team manages theirs. They can also be used in a managed service provider scenario where customers manage their respective systems.

0 Helpful

Firepowered
Level 1
Level 1
In response to Marvin Rhoads

‎10-07-2019 04:29 AM

Thanks Marvin.

 

CDO might not be possible right now.

 

Since I am out of "Domains" already, and I have 3-4 sites to add, what are my options? I am thinking restructuring domains region wise should suffice, EMEA / APAC / US etc.

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card