resources

References


FAQs


What Features Cisco Firepower offers vs Fortinet for creating Multiple Virtual Firewalls on a Single Device?

We got 2 Options with Cisco firewalling systems. 


  • ASA firewalls support multi-context mode, 
  • FTD firewalls offer multi-instance mode. 

    • These features allow us to deploy multiple container instances on a single chassis, functioning as completely independent devices. The security of these devices is configured by the administrator.

    This capability is supported on Firepower 3100, 4100, 4200, and 9300 series hardware only.
    https://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/multi-instance/multi-instance_solution.html

    How to update 3DES License on ASA

    1. ciscoasa(config)# license smart
    2. ciscoasa(config)# feature tier standard
    3. ciscoasa(config)# feature strong-encryption
    4. ciscoasa(config)# license smart register idtoken <smart-token> force

    Unable to connect FTD 3105 to SCC?

    • We opted for manually registration process. For that, we wanted to set the ethernet1/1 interface as management data interface acting as outside interface. 
    • We tried below command:
      configure network management-data-interface 
    However, the command returned below error:
    Error: This command is not supported when Management interface is not configured to use a static address

    As a workaround, we first configured a dummy static IP on the management0 interface as shown below:
          configure network ipv4 manual 1.1.1.1 255.255.255.0 1.1.1.2

    • After applying this workaround, we were able to successfully configure the management-data-interface.

    • Once, its configured, we follow the procedure for the registration in the cdFMC via registration key. Process were smooth and we were able to successfully register the second FTD.

    Report abuse