Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1162
Views
0
Helpful
3
Replies

Sourcefire POC

Nishad Dadhaniya
Level 1
Level 1

ā€Ž01-04-2016 01:45 AM - edited ā€Ž03-12-2019 05:51 AM

Hello guys i am doing sourcefire POC can anyone please guide me on the following

I have 5585 with source fire hardware module

Below is the topology after putting ASA 5585 {as of now there is no asa In between}

Here is the configuration 

Core-1:
interface GigabitEthernet1/3
description Link to s-rl-ns-dat-1
ip address 10.200.0.1 255.255.255.252
ip flow egress
ip policy route-map _CO_INET
ip ospf network point-to-point
end

CORE-2:
interface GigabitEthernet1/5
description Link to s-rl-ns-dat-2
ip address 10.200.0.69 255.255.255.252
ip policy route-map _CO_INET
ip ospf network point-to-point
wrr-queue cos-map 2 2 3 6 7
wrr-queue cos-map 3 1 4
snmp ifindex persist
end

DAT-1:
interface GigabitEthernet1/1/7
description * Link to s-rl-ns-cor-1
no switchport
ip address 10.200.0.2 255.255.255.252
ip ospf network point-to-point
ip ospf cost 5
mls qos trust dscp
end

DAT-2:
interface GigabitEthernet2/1/7
description * Link to s-rl-ns-cor-2
no switchport
ip address 10.200.0.70 255.255.255.252
ip policy route-map _CO_INET
ip ospf network point-to-point
mls qos trust dscp
end

Can you please give me Idea how can i configure ASA 5585 in transparent mode

Labels:
Preview file
425 KB
0 Helpful
3 Replies 3

Philip D'Ath
VIP Alumni
VIP Alumni

ā€Ž01-04-2016 05:33 AM

Put the ASA in transparent mode first:

http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/97853-Transparent-firewall.html

Then configure SourceFire as normal.

0 Helpful

Nishad Dadhaniya
Level 1
Level 1
In response to Philip D'Ath

ā€Ž01-04-2016 10:18 AM

That i understood , I have couple of doubts

1) we need to require BVI ? 
2) The management IP address must be on the same subnet as the connected network. ? as we have /30 its not possible 

what i am thinking is dis1 is inside 1 and dis2 is inside2 , core1 is outside1 and core2 is outside2

and management IP which also is in same subnet as firepower hdw module but as management subnet is different then connected data network how can we achieve this ? 

0 Helpful

Philip D'Ath
VIP Alumni
VIP Alumni
In response to Nishad Dadhaniya

ā€Ž01-04-2016 10:38 AM

Managing the ASA and SourceFire is usually done by the dedicated management ports.  As such, you can configure the management port with an IP address belonging to any subnet you choose.  Note that SourceFire needs to be able to download information from the Internet.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card