03-19-2020 05:02 AM
We have an FMC console we use to support our firepower devices.
I require some assistance with configuration of the VM itself.
Currently we have a separate vlan for the management traffic and the interface on the vm but this has now been put into our live infrastructure. Previously it sat on a physical device.
We need to add an additional NIC to the VM to allow it to pass internet traffic so that the FMC can connect to Cisco smart licensing server and confirm the entitlement.
We are not able to make the firewalls themselves internet facing. The workaround we had on the physical device was to connect it to the internet and then to put it back onto its network with the license confirmed and then we can deploy changes etc. and obviously this isn't possible in our virtual environment.
Any Cisco document would really help to us move forward
Thanks
03-19-2020 06:51 AM
As Long as FMC can able to contact htps://smart-satellite.cisco.com:443 - it will license.
Other quick dirty solution i can think of for you to easy, rather complicating things, make some proxy server which can comunicate to internet, and use that proxy server in FMC.
make sense ?
03-19-2020 12:55 PM
If you do not want to open for internet access for only the FMC, then you will need to use a smart software satellite server. All devices that use smart licensing require periodic connection the Cisco to update license status and for your setup the satellite server is the best option
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide