16-18
Cisco ASA Series Firewall CLI Configuration Guide
Chapter 16 ASA FirePOWER (SFR) Module
Configure the ASA FirePOWER Module
Configure the Security Policy with FireSIGHT Management Center
To open FireSIGHT Management Center, do one of the following:
•
Use a web browser to open
https://
DC_address
, where
DC_address
is the DNS name or IP address
of the manager you defined in
Add ASA FirePOWER to the FireSIGHT Management Center,
. For example, https://dc.example.com.
•
In ASDM, choose
Home > ASA FirePOWER Status
and click the link at the bottom of the
dashboard.
For information about how to configure the security policy, see the
FireSIGHT System User Guide
or the
online help in FireSIGHT Management Center.
Configure the Security Policy with ASDM
For ASA 5506-X, if you do not configure a FireSIGHT Management Center, you use ASDM to configure
the security policy.
ASA FirePOWER pages are separate from the ASA configuration pages. Use the following pages to
monitor and configure the module. You can click
Help
in any page, or choose
Help > ASA FirePOWER
Help Topics
, to learn more about how to configure policies.
•
Home > ASA FirePOWER Dashboard
—The dashboard provides summary information about the
software running on the module, product updates, licensing, system load, disk usage, system time,
and interface status.
•
Home > ASA FirePOWER Reporting
—The reporting page provides Top 10 dashboards for a wide
variety of module statistics, such as web categories, users, sources, and destinations for the traffic
passing through the module.
•
Home > ASA FirePOWER Status
—Also available when you manage the module with FireSIGHT
Management Center, the status page includes module information, such as the model, serial number,
and software version, and module status, such as the application name and status, data plane status,
and overall status. If the module is registered to a FireSIGHT Management Center, you can click the
link to open the application and do further analysis and module configuration.
•
Configuration > ASA FirePOWER Configuration
—This drawer includes pages for each ASA
FirePOWER policy, such as access control and intrusion policies. The configuration of these
policies is consistent with the same policies in FireSIGHT Management Center, so you can easily
transition between the two products. Click
Help
within the policy page to get detailed information
on configuring the policies.
•
Configuration > Firewall > Access Rules
—When you choose to configure ASA FirePOWER with
ASDM, the ASA access rules page includes toggle buttons so that you can easily switch the view
between ASA rules and ASA FirePOWER rules. Keep in mind that ASA inbound rules on an
interface are always applied before ASA FirePOWER access control policies. Any traffic dropped
through inbound rules is never sent to ASA FirePOWER.
•
Monitoring > ASA FirePOWER Monitoring
—There are several pages for monitoring the module,
including syslog, task status, module statistics, and a real-time event viewer.
Summary of Contents for ASA 5512-X
Page 5: ...P A R T 1 Service Policies and Access Control ...
Page 6: ......
Page 51: ...P A R T 2 Network Address Translation ...
Page 52: ......
Page 127: ...P A R T 3 Application Inspection ...
Page 128: ......
Page 255: ...P A R T 4 Connection Settings and Quality of Service ...
Page 256: ......
Page 303: ...P A R T 5 Advanced Network Protection ...
Page 304: ......
Page 339: ...P A R T 6 ASA Modules ...
Page 340: ......