The Getting Started Guide and

sohel.jujara · ‎06-01-2017

Hello All,

Today I have received one Cisco Firepower manager 1000 in my organization, anyone please guide me how to first level configuration can I do ?

And how to connect in our exiting topology , please share topology ?

Regards,

Sohel

Marvin Rhoads · ‎06-02-2017

The Getting Started Guide and Configuration Guide are all under the pridct support page here:

http://www.cisco.com/c/en/us/support/security/defense-center/tsd-products-support-series-home.html

It's quite a big undertaking if you don't know anything about FirePOWER. I'd recommend some training - at least something like the free labminutes.com video sessions.

sohel.jujara · ‎06-02-2017

Thanks....

Can you guide me, There are 3 port is Firepower module one is management port and two port is LAN port.

So Where is connected Management port and where is connected LAN port.,..

And what is role of management port…

Also please share how to implement and connect in our production….below is our topology…..

L2 Srvr &users S/W--------L3 CORE S/W-------CISCO ASA------ROUTER------INTERNET CLOUD

Marvin Rhoads · ‎06-03-2017

You asked first about FirePOWER Manager 1000. That is a management appliance only. It does not act as an IPD/IDS. It only has a management LAN interface.

What is the sensor model you are talking about? How did you get these? Normally there are some professional services you can use for initial setup. It is not a trivial 30 minutes and done process.

sohel.jujara · ‎06-04-2017

Hello,

Below mention sensor we are using.....also we are using in production CISCO IPS device.

Access denied
Using keyboard-interactive authentication.
Password:
Last login: Sat Jun 3 09:28:39 2017 from 10.82.4.251

Copyright 2004-2015, Cisco and/or its affiliates. All rights reserved.
Cisco is a registered trademark of Cisco Systems, Inc.
All other trademarks are property of their respective owners.

Cisco Linux OS v5.4.1 (build 12)
Cisco ASA5516 v5.4.1 (build 211)

Marvin Rhoads · ‎06-04-2017

I'm sorry but what you have is still unclear.

You mention your ASA is existing. Then you mention a 5516. Neither the 5516 or FirePOWER 1000 have only two LAN ports as you originally mentioned.

Please answer the following yes or no for each question if no, then please clarify :

1. Is that ASA 5516 an old one or the new one?

2. Is is the case that a new ASA 5516 is replacing an older ASA with IPS module?

3. And do you have a separate FirePOWER Manager 1000?

sohel.jujara · ‎06-05-2017

. Is that ASA 5516 an old one or the new one? new

2. Is is the case that a new ASA 5516 is replacing an older ASA with IPS module? yes

3. And do you have a separate FirePOWER Manager 1000? yes

Marvin Rhoads · ‎06-05-2017

You should follow the Quick Start Guide for ASA with FirePOWER Service module. You would have the routed mode use case.

http://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/sfr/firepower-qsg.html#pgfId-139738

However you still need to migrate the existing ASA configuration and also setup and deploy the NGIPS policies from the FirePOWER 1000 appliance

You should really consult with your local partner of Cisco SE. It is at least a day or two of work to take the unconfigured systems you have and get them put in place of your current ASA with Cisco IPS module.

Required Cisco Firepopwer Manager 1000 Configuration Guide